Security News
The Changelog Podcast: Practical Steps to Stay Safe on npm
Learn the essential steps every developer should take to stay secure on npm and reduce exposure to supply chain attacks.
By Sarah Gooding -  Oct 31, 2025
🚀 DAY 5 OF LAUNCH WEEK: Introducing Socket Firewall Enterprise.Learn more →
varint
protobuf-style varint bytes - use msb to create integer values of varying sizes
varint
encode whole numbers to an array of protobuf-style varint bytes and also decode them.
var varint = require('varint')
var bytes = varint.encode(300) // === [0xAC, 0x02]
varint.decode(bytes) // 300
varint.decode.bytes // 2 (the last decode() call required 2 bytes)
api
varint = require('varint')
varint.encode(num[, buffer=[], offset=0]) -> buffer
Encodes num into buffer starting at offset. returns buffer, with the encoded varint written into it. If buffer is not provided, it will default to a new array.
varint.encode.bytes will now be set to the number of bytes
modified.
varint.decode(data[, offset=0]) -> number
decodes data, which can be either a buffer or array of integers, from position offset or default 0 and returns the decoded original integer.
Throws a RangeError when data does not represent a valid encoding.
varint.decode.bytes
if you also require the length (number of bytes) that were required to decode the integer you can access it via varint.decode.bytes. this is an integer property that will tell you the number of bytes that the last .decode() call had to use to decode.
varint.encode.bytes
similar to decode.bytes when encoding a number it can be useful to know how many bytes where written (especially if you pass an output array). you can access this via varint.encode.bytes which holds the number of bytes written in the last encode.
varint.encodingLength(num)
returns the number of bytes this number will be encoded as, up to a maximum of 8.
usage notes
If varint is passed a buffer that does not contain a valid end
byte, then decode will throw RangeError, and decode.bytes
will be set to 0. If you are reading from a streaming source,
it's okay to pass an incomplete buffer into decode, detect this
case, and then concatenate the next buffer.
License
MIT
Other packages similar to varint
protobufjs
protobufjs is a comprehensive library for working with Protocol Buffers, which includes functionality for encoding and decoding variable-length integers. It is more feature-rich compared to varint, offering schema definitions and more complex data structures.
msgpack-lite
msgpack-lite is a library for encoding and decoding data in the MessagePack format, which includes support for variable-length integers. It is similar to varint but also supports a wider range of data types and is optimized for performance.
leb128
leb128 is a library for encoding and decoding LEB128 (Little Endian Base 128) integers, which is another form of variable-length integer encoding. It is similar to varint but uses a different encoding scheme.
FAQs
protobuf-style varint bytes - use msb to create integer values of varying sizes
The npm package varint receives a total of 3,332,927 weekly downloads. As such, varint popularity was classified as popular.
We found that varint demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 2 open source maintainers collaborating on the project.
Package last updated on 28 Sep 2020
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
Security Community Slams MIT-linked Report Claiming AI Powers 80% of Ransomware
Experts push back on new claims about AI-driven ransomware, warning that hype and sponsored research are distorting how the threat is understood.
By Sarah Gooding -  Oct 30, 2025
Security News
Ruby Core Team Assumes Stewardship of RubyGems and Bundler, Former Maintainers Offer to Transfer All Rights to Matz
Ruby's creator Matz assumes control of RubyGems and Bundler repositories while former maintainers agree to step back and transfer all rights to end the dispute.
By Sarah Gooding -  Oct 29, 2025