
Research
/Security News
Critical Vulnerability in NestJS Devtools: Localhost RCE via Sandbox Escape
A flawed sandbox in @nestjs/devtools-integration lets attackers run code on your machine via CSRF, leading to full Remote Code Execution (RCE).
youtube-dl-js-wrapper
Advanced tools
youtube-dl-js-wrapper
is a JavaScript package that provides a wrapper for the popular youtube-dl
command-line tool, allowing you to download and extract information from YouTube videos in your Node.js projects.
You can install youtube-dl-js-wrapper
using NPM:
npm install youtube-dl-js-wrapper
Here is an example of how to use youtube-dl-js-wrapper
to download a YouTube video and extract information about it:
const downloadYoutube = require('youtube-dl-js-wrapper');
downloadYoutube('https://www.youtube.com/watch?v=6xKWiCMKKJg', {
dumpSingleJson: true,
noCheckCertificates: true,
noWarnings: true,
preferFreeFormats: true,
addHeader: [
'referer:youtube.com',
'user-agent:googlebot'
]
}).then(output => console.log(output));
This example downloads a video from YouTube with the specified URL and outputs its information in a single JSON object. Several options are passed to customize the download, such as disabling certificate checks, suppressing warnings, preferring free formats, and adding custom headers to the request. The output
variable is logged to the console, which contains the output of the youtube-dl
command.
youtube-dl-js-wrapper
is a wrapper for the youtube-dl
command-line tool, which means that you must have youtube-dl
installed on your system for this package to work.child_process
module to run youtube-dl
as a child process. As a result, it may not work correctly on all platforms. If you encounter any issues, please file a bug report on the GitHub page.Contributions to youtube-dl-js-wrapper
are welcome! Please submit pull requests or open issues on the GitHub page.
youtube-dl-js-wrapper
is licensed under the MIT License.
FAQs
youtube-dl wrapper with JS
The npm package youtube-dl-js-wrapper receives a total of 0 weekly downloads. As such, youtube-dl-js-wrapper popularity was classified as not popular.
We found that youtube-dl-js-wrapper demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
/Security News
A flawed sandbox in @nestjs/devtools-integration lets attackers run code on your machine via CSRF, leading to full Remote Code Execution (RCE).
Product
Customize license detection with Socket’s new license overlays: gain control, reduce noise, and handle edge cases with precision.
Product
Socket now supports Rust and Cargo, offering package search for all users and experimental SBOM generation for enterprise projects.