npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@skalaio/browser

v0.1.0

Published

Skala client-side secure fingerprinting and anti-tampering library

Readme

Skala Browser Fingerprint SDK

Secure client-side fingerprinting and anti-tampering library for the Skala fraud detection platform.

Provides robust, privacy-preserving browser fingerprinting, anti-spoofing checks, and seamless integration with the Skala TS/Node SDK.

Install

npm install @skalaio/browser

Quick Start

Initialize the browser client to collect high-fidelity client indicators, and feed them into your Skala TS/Node SDK client.

import { SkalaBrowserClient } from '@skalaio/browser';
import { Skala } from '@skalaio/node';

// 1. Collect client-side fingerprint on the browser
const browserClient = new SkalaBrowserClient();
const fingerprint = await browserClient.getFingerprint();

// 2. Score request (using main SDK client)
const skala = new Skala({ apiKey: 'sk_live_...' });
const result = await skala.score({
  event_type: 'signup',
  ip: req.ip,
  email: body.email,
  device_id: fingerprint.visitorId,
  metadata: {
    fingerprint_tampered: fingerprint.tampered,
    fingerprint_confidence: fingerprint.confidenceScore,
    fingerprint_signals: fingerprint.signals,
    thumbmark_id: fingerprint.thumbmarkId,
  }
});

if (result.decision === 'block') {
  // block request
}

Secure Fingerprinting & Anti-Spoofing

@skalaio/browser runs a dual-library fingerprinting engine to calculate high-fidelity client indicators:

  • Parallel Execution: Executes FingerprintJS and thumbmarkjs in parallel to achieve multi-source cross-validation and higher accuracy without increasing latency.
  • Anti-Anti-Browser Detection: Performs real-time anti-tampering checks to identify spoofed environments:
    • Headless Detection: Analyzes webdriver flag parameters and headless browser agents.
    • Automation Tool Detection: Checks for Selenium, Puppeteer, PhantomJS, and CDC driver array markers.
    • Canvas Noise Detection: Double-renders canvas elements and compares pixel buffers to identify canvas-spoofing extensions.
    • WebGL Software Renderer: Detects software rasterizer fallbacks (e.g. llvmpipe) while preventing Mesa driver false positives on physical Linux machines.
const result = await browserClient.getFingerprint();

console.log(result.visitorId);       // Secure combined SHA-256 visitor ID
console.log(result.thumbmarkId);     // thumbmarkjs cross-validation ID
console.log(result.tampered);         // boolean flag indicating spoofing detection
console.log(result.confidenceScore); // trust rating (0.1 to 1.0)
console.log(result.signals);          // raw anti-spoofing checks map

License

MIT