npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@appinventiv/smtp-mail

v1.0.2

Published

SMTP email sending with Nodemailer for Node.js services

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Maintainers

developer-atdeveloper-atabhishek.tyagi1abhishek.tyagi1

Keywords

Readme

@appinventiv/smtp-mail

SMTP email sending for Node.js using Nodemailer. Initialize the transport once with a Nodemailer-native config object (same idea as initiateRedisConnection in @appinventiv/redis), then send mail with standard options (HTML, text, attachments, etc.).

There is no encryption enum in this package: you set secure, requireTLS, tls, and port exactly as your SMTP provider requires. Below are recipes for common setups.

Installation

npm install @appinventiv/smtp-mail

Features

  • Flexible SMTP transport: any fields supported by Nodemailer SMTPTransport options
  • Optional auth / password (omit when your server does not require credentials)
  • Optional defaultFrom: used when sendMail does not include from
  • Single initializer: initiateSMTPConnection(config) — only runs if not already initialized
  • verify() for connection checks
  • sendMail() with full Nodemailer SendMailOptions
  • Attachments from a public URL using href
  • TypeScript definitions (ISmtpInitOptions, ISmtpConfig alias, ISendMailOptions)

Configuration model

  • ISmtpInitOptions = Nodemailer SMTPTransportOptions + optional defaultFrom
  • The defaultFrom field is not passed to createTransport; it is stored and merged into each sendMail when from is omitted.
  • All other keys (host, port, secure, requireTLS, auth, tls, pool, …) are passed through to Nodemailer unchanged.

Nodemailer TLS flags (secure and requireTLS)

These are the main levers for “TLS” vs “STARTTLS”. There is no separate enum in this package—you set them on the same object you pass to initiateSMTPConnection.

| secure | Meaning (typical use) | |----------|------------------------| | true | Connection uses TLS from the first byte (implicit TLS / SMTPS). Often called “TLS” or “SSL” in vendor docs. Common port: 465. | | false | Connection starts plain (not TLS yet). The server may offer STARTTLS to upgrade. Common ports: 587, sometimes 25. |

| requireTLS | Meaning (use with secure: false) | |--------------|----------------------------------------| | true | After connecting in plain mode, a TLS upgrade is required (STARTTLS path). Use when your provider expects STARTTLS on port 587. | | false or omitted | STARTTLS may still be offered by the server, but behavior is opportunistic unless your provider says otherwise. For strict encrypted submission, prefer requireTLS: true on 587. |

STARTTLS vs “TLS” in client wording

  • STARTTLS → usually secure: false + requireTLS: true + port 587 (confirm with provider).
  • TLS / SSL / SMTPS (implicit) → secure: true + port 465 (confirm with provider).
  • If the client says “STARTTLS/TLS”, they often mean either endpoint is valid: pick one row from your IT doc (587+STARTTLS or 465+implicit), not both at once.

Configuration combinations (copy-paste reference)

Every example uses ISmtpInitOptions: transport fields + optional defaultFrom. Omit any field your server does not need.

A — Host, port, username, password, default from (authenticated + default sender)

Use when you have full credentials and want a default envelope sender so sendMail can omit from.

STARTTLS (typical 587):

smtpMail.initiateSMTPConnection({
  host: 'smtp.example.com',
  port: 587,
  secure: false,
  requireTLS: true,
  auth: { user: '[email protected]', pass: 'your-password' },
  defaultFrom: '"My App" <[email protected]>'
});

Implicit TLS / SMTPS (typical 465, secure: true):

smtpMail.initiateSMTPConnection({
  host: 'smtp.example.com',
  port: 465,
  secure: true,
  auth: { user: '[email protected]', pass: 'your-password' },
  defaultFrom: '"My App" <[email protected]>'
});

B — Host, port, username, password (no defaultFrom)

Same TLS choices as A, but each sendMail must include from:

smtpMail.initiateSMTPConnection({
  host: 'smtp.example.com',
  port: 587,
  secure: false,
  requireTLS: true,
  auth: { user: '[email protected]', pass: 'your-password' }
});

await smtpMail.sendMail({
  from: '"My App" <[email protected]>',
  to: '[email protected]',
  subject: 'Hello',
  text: 'Hi'
});

C — Host, port, username, defaultFrom (no password)

Rare. Only if your provider documents SMTP AUTH with an empty password or user-only. Otherwise prefer D (omit auth).

smtpMail.initiateSMTPConnection({
  host: 'smtp.example.com',
  port: 587,
  secure: false,
  requireTLS: true,
  auth: { user: '[email protected]', pass: '' },
  defaultFrom: '"My App" <[email protected]>'
});

If authentication fails, remove auth or follow vendor docs exactly.

D — Host, port, defaultFrom (no auth, no password)

Internal relay or open submission where no SMTP auth is required:

smtpMail.initiateSMTPConnection({
  host: 'smtp.internal.local',
  port: 25,
  secure: false,
  defaultFrom: '"Service" <[email protected]>'
});

E — Host, port only (minimal)

No defaultFrom, no auth. You must pass from on every sendMail and your network must allow unauthenticated SMTP (uncommon on the public internet):

smtpMail.initiateSMTPConnection({
  host: 'smtp.example.com',
  port: 587,
  secure: false,
  requireTLS: true
});

F — Same as A–E plus extra Nodemailer options

Anything else from Nodemailer SMTP transport can sit on the same object, for example:

  • tls: { rejectUnauthorized: true, ca: '...' } — custom CA / stricter TLS
  • connectionTimeout, greetingTimeout, socketTimeout
  • pool: true — connection pooling for high volume

Example (implicit TLS + custom CA bundle):

smtpMail.initiateSMTPConnection({
  host: 'smtp.example.com',
  port: 465,
  secure: true,
  auth: { user: '[email protected]', pass: 'your-password' },
  defaultFrom: '"My App" <[email protected]>',
  tls: {
    // e.g. ca: fs.readFileSync('corp-ca.pem'),
    rejectUnauthorized: true
  }
});

Summary table (quick pick)

| Goal | secure | requireTLS | Typical port | |------|----------|--------------|----------------| | STARTTLS (upgrade after connect) | false | true | 587 | | Implicit TLS / SMTPS (“TLS” / “SSL”) | true | omit or false | 465 | | Plain (insecure; internal only) | false | false | 25 / internal |

Always confirm host, port, and TLS mode with your provider; mismatches usually fail at verify() or the first sendMail.

Usage

Initialize and send

import { smtpMail, ISmtpInitOptions } from '@appinventiv/smtp-mail';

const config: ISmtpInitOptions = {
  host: 'smtp.example.com',
  port: 587,
  secure: false,
  requireTLS: true,
  auth: {
    user: '[email protected]',
    pass: 'your-password'
  },
  defaultFrom: '"My App" <[email protected]>'
};

smtpMail.initiateSMTPConnection(config);
await smtpMail.verify();

await smtpMail.sendMail({
  to: '[email protected]',
  subject: 'Hello',
  text: 'Plain text body'
});

If you omit defaultFrom, every sendMail must include from.

Without password (no auth)

When your SMTP relay does not require credentials, omit auth:

smtpMail.initiateSMTPConnection({
  host: 'smtp.internal.local',
  port: 25,
  secure: false,
  defaultFrom: '"Service" <[email protected]>'
});

Behavior without auth is provider-specific; confirm with your infrastructure team.

With username but no password (rare)

See configuration combination C above. Prefer D (omit auth) unless your provider requires an empty password.

More detail

TLS flags, STARTTLS vs implicit TLS, and all credential combinations are documented in Nodemailer TLS flags, Configuration combinations, and Summary table above. This section avoids duplicating those examples.

Attachments from a URL (href)

For a publicly reachable HTTPS link (no custom auth headers), use href on an attachment:

await smtpMail.sendMail({
  to: '[email protected]',
  subject: 'Your file',
  text: 'Please find the attachment.',
  attachments: [
    {
      filename: 'report.pdf',
      href: 'https://cdn.example.com/files/report.pdf'
    }
  ]
});

Presigned URLs work if still valid when sendMail runs. For URLs that need Authorization headers, download the file yourself and attach with content as a Buffer.

API

  • smtpMail.initiateSMTPConnection(config: ISmtpInitOptions) — create transporter once if not already created; optional defaultFrom
  • smtpMail.verify() — verify SMTP connection
  • smtpMail.sendMail(options) — send email (from optional if defaultFrom was set)
  • smtpMail.getTransport() — underlying Nodemailer transporter

Types: ISmtpInitOptions (primary), ISmtpConfig (alias), ISendMailOptions.

Troubleshooting

  • Connection / TLS errors: confirm host, port, secure, and requireTLS match provider documentation.
  • Missing from: set defaultFrom on init or pass from on each sendMail.

Build

npm run build

Security

Do not commit SMTP credentials. Load them from environment or a secrets manager, then pass them into the init config object.

License

ISC