npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@reqbin/connector

v0.1.4

Published

ReqBin Connector (local agent): bridge browser HTTP(S) requests to resources in local network.

Downloads

117

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

reqbinreqbin

Keywords

reqbinconnectoragentproxylocalbridgerelaytunnel

Readme

@reqbin/connector

Local Node.js agent that lets the ReqBin browser client submit HTTP(S) requests from the user's local network context.

Install

npm i -g @reqbin/connector

Development from this repo:

npm install
npm run build
npm start

Run

reqbin-agent

Safe defaults:

  • listens on 127.0.0.1:7070;
  • allows CORS only for https://reqbin.com and https://beta.reqbin.com;
  • requires terminal-code pairing before POST /v1/fetch;
  • stores paired bearer tokens in memory only;
  • blocks metadata and link-local targets such as 169.254.169.254 and IPv6 fe80::/10;
  • writes JSON logs to stdout without request bodies, response bodies, tokens, cookies, or auth headers.

Startup output includes endpoint URLs and, when auth is enabled, prints the short-lived six-digit pairing code first:

{"event":"reqbin.connector.pairing_code","message":"ReqBin pairing code: 123456","pairingCode":"123456","pairingExpiresAt":"2026-05-14T22:00:00.000Z"}
{"event":"reqbin.connector.started","authDisabled":false,"host":"127.0.0.1","healthUrl":"http://localhost:7070/health","versionUrl":"http://localhost:7070/version","fetchUrl":"http://localhost:7070/v1/fetch","openApiUrl":"http://localhost:7070/openapi.json","pairingCode":"123456","pairingExpiresAt":"2026-05-14T22:00:00.000Z"}

CLI

reqbin-agent --port 7070

Options:

  • --port <number> / -p <number>: listen port. Defaults to 7070 or PORT.
  • --host <host>: listen host. Defaults to 127.0.0.1.
  • --allow-origin <origin>: extend the CORS allowlist. Repeatable.
  • --dev: allow local development browser origins.
  • --no-auth: disable pairing/token auth for local development only.
  • --request-timeout-ms <number>: target request timeout. Default 300000.
  • --request-body-limit-bytes <number>: target request body limit. Default 5242880.
  • --response-body-limit-bytes <number>: target response body limit. Default 5242880.
  • --max-redirects <number>: redirect limit. Default 10.
  • --help, --version.

Endpoints

  • GET /health: public reachability check. Returns { "status": "up" }.
  • GET /version: public connector metadata.
  • GET /openapi.json: generated OpenAPI document.
  • POST /v1/pair: exchanges the terminal pairing code for a bearer token.
  • POST /v1/fetch: authenticated ReqBin request execution endpoint.

The legacy POST /proxy endpoint is not implemented.

POST /v1/fetch accepts the ReqBin request envelope:

{
  "json": "{\"method\":\"GET\",\"url\":\"https://example.com\",\"headers\":\"Accept: application/json\\n\",\"contentType\":\"NOBODY\",\"content\":\"\"}",
  "sessionId": "optional-client-session",
  "deviceId": "optional-client-device"
}

Correlation ID And Logs

All routes accept correlation-id. If it is missing, the server generates one and returns it in the response header.

Each request logs start/finish JSON events to stdout with correlationId, method, sanitized path, hasQuery, status code, and elapsed time. The fetch pipeline also logs target request start/finish/failure, validation failures, and stripped forwarded-header warnings. Payloads, query values, and credentials are intentionally not logged.

Redirects And Timings

Target redirects are followed manually with browser-like method/body behavior and a default limit of 10. Each redirect entry includes its own elapsed time and timing object.

Timing fields are returned in the existing ReqBin sender response shape. The default Node transport records DNS, TCP connect, TLS, sending, waiting, receiving, and total timings where the Node socket lifecycle exposes those phases. Cached/reused socket phases that are not emitted by Node are returned as 0 rather than guessed.

The exact /v1/fetch response contract is documented in docs/fetch-sender-response-contract.md.

OpenAPI

The generated spec is available at runtime:

http://localhost:7070/openapi.json

Regenerate the checked-in spec:

npm run openapi:export

The generated file is docs/openapi.json.

Validation

npm run lint
npm run typecheck
npm run test:coverage
npm run build
npm run openapi:check