Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
youtube-finder-sync
Advanced tools
A module for easy connection with Youtube API. Fork from youtube-finder.
A client for connect YOUTUBE API with an application javascript. All promise-based.
npm install youtube-finder-sync
yarn add youtube-finder-sync
pnpm add youtube-finder-sync
const YTClient = require('youtube-finder-sync');
const client = new YTClient({ key: 'YOUR_API_KEY' });
const params = {
part: 'snippet',
q: 'Rick Roll',
maxResults: 5,
};
client
.search(params)
.then(data => {
// your code
})
.catch(err => {});
part
The part names that can be included in the parameter value are:
- snippet
- id
* maxResults
Acceptable values are {0/} a 50, both inclusive. The default is 5.
* q
The parameter q specifies the query term to be searched
* type
The acceptable values are:
* channel
* playlist
* video
default value is: video,channel,playlist
* videoDuration
Acceptable values are:
* any: do not filter search results videos by duration. This is the default value.
* long: Include only videos more than 20 minutes.
* medium: Include only videos between 4 and 20 minutes (inclusive) in length.
* short: Include only videos of less than 4 minutes.
more info at website official: https://developers.google.com/youtube/v3/docs/search/list#parmetros
FAQs
A module for easy connection with Youtube API. Fork from youtube-finder.
The npm package youtube-finder-sync receives a total of 3 weekly downloads. As such, youtube-finder-sync popularity was classified as not popular.
We found that youtube-finder-sync demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.