Security News
Research
Data Theft Repackaged: A Case Study in Malicious Wrapper Packages on npm
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
The yt-search npm package is a simple and efficient tool for searching YouTube videos, channels, and playlists. It provides an easy-to-use interface for fetching YouTube search results and metadata.
Search for Videos
This feature allows you to search for YouTube videos based on a query string. The code sample demonstrates how to search for videos related to 'Node.js tutorial' and log the results.
const ytSearch = require('yt-search');
async function searchVideos(query) {
const result = await ytSearch(query);
return result.videos;
}
searchVideos('Node.js tutorial').then(videos => {
console.log(videos);
});
Search for Channels
This feature allows you to search for YouTube channels based on a query string. The code sample demonstrates how to search for channels related to 'Tech channels' and log the results.
const ytSearch = require('yt-search');
async function searchChannels(query) {
const result = await ytSearch(query);
return result.channels;
}
searchChannels('Tech channels').then(channels => {
console.log(channels);
});
Search for Playlists
This feature allows you to search for YouTube playlists based on a query string. The code sample demonstrates how to search for playlists related to 'Music playlists' and log the results.
const ytSearch = require('yt-search');
async function searchPlaylists(query) {
const result = await ytSearch(query);
return result.playlists;
}
searchPlaylists('Music playlists').then(playlists => {
console.log(playlists);
});
Get Video Details
This feature allows you to get detailed information about a specific YouTube video using its video ID. The code sample demonstrates how to fetch and log details for the video with ID 'dQw4w9WgXcQ'.
const ytSearch = require('yt-search');
async function getVideoDetails(videoId) {
const result = await ytSearch({ videoId });
return result;
}
getVideoDetails('dQw4w9WgXcQ').then(video => {
console.log(video);
});
The youtube-search package provides similar functionality for searching YouTube videos. It allows you to search for videos and retrieve metadata, but it may require an API key for access, unlike yt-search which does not.
The ytsr package is another alternative for searching YouTube content. It offers more advanced search capabilities and filtering options compared to yt-search, but it also requires more configuration.
The simple-youtube-api package provides a more comprehensive interface for interacting with the YouTube Data API. It supports searching for videos, channels, and playlists, as well as managing YouTube resources, but it requires an API key.
simple youtube search API and CLI
npm install -g yt-search
# enter interactive search and selection
yt-search superman theme
const ytSearch = require( 'yt-search' )
ytSearch( 'superman theme', function ( err, r ) {
if ( err ) throw err
const videos = r.videos
const playlists = r.playlists
const accounts = r.accounts
const firstResult = videos[ 0 ]
console.log( firstResult )
} )
{
title: 'Superman Theme',
url: '/watch?v=e9vrfEoc8_g',
videoId: 'e9vrfEoc8_g',
seconds: 253,
timestamp: '4:13',
duration: {
toString: [Function: toString],
seconds: 253,
timestamp: '4:13'
},
ago: '8 years ago',
views: 29127516
}
Simple function to get youtube search results.
Not sure..
Using HTTP requests and parsing the results with cheerio.
CLI interactive mode with node-fzf
const opts = {
query: 'superman theme',
pageStart: 1, // first youtube page result
pageEnd: 3 // up until page 3
}
ytSearch( opts, function ( err, r ) {
if ( typeof opts === 'string' ) {
opts = {
query: opts,
pageStart: 1,
pageEnd: 3
}
}
// etc
} )
npm install yt-search # local module usage
npm install -g yt-search # global CLI usage
npm test
FAQs
search youtube
The npm package yt-search receives a total of 141,286 weekly downloads. As such, yt-search popularity was classified as popular.
We found that yt-search demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Research
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
Research
Security News
Attackers used a malicious npm package typosquatting a popular ESLint plugin to steal sensitive data, execute commands, and exploit developer systems.
Security News
The Ultralytics' PyPI Package was compromised four times in one weekend through GitHub Actions cache poisoning and failure to rotate previously compromised API tokens.