View phin on Snyk Open Source Advisor

Package Health Score

77 / 100

security
No known security issues
popularity
Influential project
maintenance
Sustainable
community
Sustainable

Explore Similar Packages

Security

No known security issues

All security vulnerabilities belong to production dependencies of direct and indirect packages.

Security and license risk for significant versions

All Versions

Version				Vulnerabilities	License Risk
3.7.1	\|	04/2024		0 C 0 H 0 M 0 L	0 H 0 M 0 L
3.6.1	\|	11/2021		0 C 0 H 1 M 0 L	0 H 0 M 0 L
2.9.3	\|	10/2018	Popular	0 C 0 H 1 M 0 L	0 H 0 M 0 L
1.0.8	\|	05/2017		0 C 0 H 1 M 0 L	0 H 0 M 0 L

License

MIT

Security Policy

Yes

Is your project affected by vulnerabilities?

Scan your projects for vulnerabilities. Fix quickly with automated fixes. Get started with Snyk for free.

Get started free

Popularity

Influential project

Weekly Downloads (1,185,926)

GitHub Stars: 574
Forks: 34
Contributors: 6

Direct Usage Popularity

The npm package phin receives a total of 1,185,926 downloads a week. As such, we scored phin popularity level to be Influential project.

Based on project statistics from the GitHub repository for the npm package phin, we found that it has been starred 574 times.

Downloads are calculated as moving averages for a period of the last 12 months, excluding weekends and known missing data points.

Community

Sustainable

Readme.md: Yes
Contributing.md: No
Code of Conduct: No
Contributors: 6
Funding: No

This project has seen only 10 or less contributors.

We found a way for you to contribute to the project! Looks like phin is missing a Code of Conduct.

Embed Package Health Score Badge

Maintenance

Sustainable

Commit Frequency

Open Issues: 16
Open PR: 8
Last Release: 5 days ago
Last Commit: 5 days ago

Further analysis of the maintenance status of phin based on released npm versions cadence, the repository activity, and other data points determined that its maintenance is Sustainable.

We found that phin demonstrates a positive version release cadence with at least one new version released in the past 3 months.

As a healthy sign for on-going project maintenance, we found that the GitHub repository had at least 1 pull request or issue interacted with by the community.

Keep your project healthy

Check your package.json

Ensure all the packages you're using are healthy and well-maintained

Snyk Vulnerability Scanner

Get health score & security insights directly in your IDE

Package

Node.js Compatibility: >= 8

Age: 10 years
Dependencies: 1 Direct
Versions: 67
Install Size: 13.2 kB
Dist-tags: 1
# of Files: 5
Maintainers: 1
TS Typings: Yes

phin has more than a single and default latest tag published for the npm package. This means, there may be other tags available for this package, such as next to indicate future releases, or stable to indicate stable releases.

Not sure how to use phin?

To help you get started, we've collected the most common ways that phin is being used within popular public projects.

remoteintech / remote-jobs / bin / build-site.js View on Github

async function request( url ) {
	console.log(
		'Requesting URL "%s"',
		url.length > 70
			? url.substring( 0, 67 ) + '...'
			: url
	);
	const res = await phin.promisified( url );
	if ( res.statusCode !== 200 ) {
		throw new Error(
			'HTTP response code ' + res.statusCode
			+ ' for URL: ' + url
		);
	}
	return res.body.toString();
}

View more ways to use phin

phin logo

> The lightweight Node.js HTTP client

Full documentation | GitHub | NPM

Deprecated

This package is deprecated and should not be used. Please see #91 for more information.

Simple Usage

const p = require('phin')

const res = await p('https://ethanent.me')

console.log(res.body)

Note that the above should be in an async context! Phin also provides an unpromisified version of the library.

Install

npm install phin

Why Phin?

Phin is relied upon by important projects and large companies. The hundreds of contributors at Less, for example, depend on Phin as part of their development process.

Also, Phin is very lightweight. To compare to other libraries, see Phin vs. the Competition.

Quick Demos

Simple POST:

await p({
	url: 'https://ethanent.me',
	method: 'POST',
	data: {
		hey: 'hi'
	}
})

Unpromisified Usage

const p = require('phin').unpromisified

p('https://ethanent.me', (err, res) =&gt; {
	if (!err) console.log(res.body)
})

Simple parsing of JSON:

// (In async function in this case.)

const res = await p({
	'url': 'https://ethanent.me/name',
	'parse': 'json'
})

console.log(res.body.first)

Default Options

const ppostjson = p.defaults({
	'method': 'POST',
	'parse': 'json',
	'timeout': 2000
})

// In async function...

const res = await ppostjson('https://ethanent.me/somejson')
// ^ An options object could also be used here to set other options.

// Do things with res.body?

Custom Core HTTP Options

Phin allows you to set core HTTP options.

await p({
	'url': 'https://ethanent.me/name',
	'core': {
		'agent': myAgent // Assuming you'd already created myAgent earlier.
	}
})

Full Documentation

There's a lot more which can be done with the Phin library.

See the Phin documentation.

Phin vs. the Competition

Phin is a very lightweight library, yet it contains all of the common HTTP client features included in competing libraries!

Here's a size comparison table:

Package	Size
request
superagent
got
axios
isomorphic-fetch
r2
node-fetch
phin

phin dependencies

centra

FAQs

What is phin?

The ultra-lightweight Node.js HTTP client. Visit Snyk Advisor to see a full health score report for phin, including popularity, security, maintenance & community analysis.

Is phin popular?

The npm package phin receives a total of 1,185,926 weekly downloads. As such, phin popularity was classified as an influential project. Visit the popularity section on Snyk Advisor to see the full health analysis.

Is phin well maintained?

We found indications that phin maintenance is sustainable demonstrating some project activity. We saw a total of 6 open source contributors collaborating on the project. See the full package health analysis to learn more about the package maintenance status.

Is phin safe to use?

The npm package phin was scanned for known vulnerabilities and missing license, and no issues were found. Thus the package was deemed as safe to use. See the full health analysis review.

Last updated on 15 April-2024, at 20:39 (UTC).

Build a secure application checklist

Select a recommended open source package

Minimize your risk by selecting secure & well maintained open source packages

DONE

Scan your app for vulnerabilities

Scan your application to find vulnerabilities in your: source code, open source dependencies, containers and configuration files

SCAN NOW

Fix identified vulnerabilities

Easily fix your code by leveraging automatically generated PRs

AUTO FIX

Monitor for new issues

New vulnerabilities are discovered every day. Get notified if your application is affected

MONITOR APP