Security News
The Hidden Blast Radius of the Axios Compromise
The Axios compromise shows how time-dependent dependency resolution makes exposure harder to detect and contain.
By Ahmad Nassri - Apr 01, 2026
New Research: Supply Chain Attack on Axios Pulls Malicious Dependency from npm.Details → →
@basaldev/nodeblocks-cloud-sdk
Advanced tools
Nodeblocks Cloud SDK
Nodeblocks Cloud SDK for creating the custom adapter.
🧑💻 For the user who use this SDK
Installation
You need npm token to install the package. Contact to the Nodeblocks team to get the token.
npm i @basaldev/nodeblocks-cloud-sdk
Configuration
We recommend to create the configuration files below by running
nbc adapter devinteractively.
Create nbc.sdk.json file in the root directory and add the following configuration to specify the service and the version of the adapter.
cp nbc.sdk.json.default nbc.sdk.json
{
"adapter":{
"service":"auth|user|organization|catalog|order|review|chat|notification",
"version":"x.x.x"
}
}
Create a .env.${service} file in the root directory and add the following configuration to pass the configs to the service and the adapter.
cp .env.default .env.${service}
ADAPTER_PACKAGE_NAME=`Absolute path to the adapter package`
PORT=8080
NODE_ENV=production
SERVICE_XXXX=`Service configuration (depends on the service)`
...
ADAPTER_XXXX=`Adapter configuration (depends on the service and the adapter)`
...
Commands
Start the development server to develop the custom adapter
nbc adapter dev
Start the server with the custom adapter
nbc adapter start
👮♀️ For the developers who develop this SDK
Installation
npm ci
Commands
Fetch the latest service templates
In the root directory, create a file called nbc.sdk.json and add the following configuration:
{
"backendRepo": "git@github.com:basaldev/nodeblocks-cloud-backend.git"
}
To fetch the latest templates from backend repository, run the following command:
npm run templates:fetch
By default, it fetches from the default branch. You can specify the branch as follows:
{
"backendRepo":{
"url": "git@github.com:basaldev/nodeblocks-cloud-backend.git",
"branch": "develop"
}
Testing
To test the SDK command locally, use /test folder.
First create pack file for the SDK:
npm pack
This will create a file called basaldev-nodeblocks-cloud-sdk-x.x.x.tgz in the root directory.
In package.json of the test folder, update the dependencies to use the local package and npm i --no-save to install the package.
// Change x.x.x to the version of the package
"dependencies": {
"@basaldev/nodeblocks-cloud-sdk": "file:../basaldev-nodeblocks-cloud-sdk-x.x.x.tgz"
}
Then, run the scripts you want like npm run adapter:dev to test there.
You should delete ADAPTER_PACKAGE_NAME from .env.${service} file not to use the custom adapter.
Publish the package
Upgrade the version in package.json file.
Run the following command to publish the package:
npm publish
FAQs
Nodeblocks cloud SDK
We found that @basaldev/nodeblocks-cloud-sdk demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 7 open source maintainers collaborating on the project.
Package last updated on 01 May 2025
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
Supply Chain Attack on Axios Pulls Malicious Dependency from npm
A supply chain attack on Axios introduced a malicious dependency, plain-crypto-js@4.2.1, published minutes earlier and absent from the project’s GitHub releases.
By Socket Research Team - Mar 31, 2026
Research
TeamPCP Compromises Telnyx Python SDK to Deliver Credential-Stealing Malware
Malicious versions of the Telnyx Python SDK on PyPI delivered credential-stealing malware via a multi-stage supply chain attack.
By Socket Research Team - Mar 27, 2026