npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

evilmail

v1.0.0

Published

Official Node.js SDK for the EvilMail API — Disposable temp email, email verification codes, inbox management, custom domain email

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

evilmailproevilmailpro

Keywords

evilmailemailemail-apisdktemp-emailtemporary-emaildisposable-emailanonymous-emailemail-verificationotpverification-codeinboxemail-clientcustom-domain-emailrandom-emailprivacyapi-clientmailnodejstypescript

Readme

The EvilMail Node.js SDK provides a modern, fully-typed TypeScript interface for integrating temporary email, disposable email addresses, email verification code extraction, inbox management, and custom domain email services into your Node.js applications. Zero runtime dependencies — built entirely on node:https and the Node.js standard library.

Features

  • Zero Dependencies — No runtime dependencies, built on node:https only
  • Full TypeScript — Strict mode, complete type definitions, source maps, declaration maps
  • ESM + CommonJS — Dual-package output with proper exports map for both module systems
  • Temporary Email — Create anonymous disposable email addresses with configurable TTL
  • Email Verification Codes — Auto-extract OTP codes from Google, Facebook, Instagram, TikTok, Discord, Twitter, LinkedIn, iCloud
  • Account Management — Full CRUD for persistent email accounts on custom domains
  • Inbox Access — Read emails, list messages, fetch full HTML & plain text content
  • Random Email Generator — Batch create random email accounts with auto-generated passwords
  • Domain Management — List free, premium, and custom email domains
  • Shortlink Creation — Generate short URLs for temporary email sessions
  • AbortSignal Support — Cancel any in-flight request using native AbortController
  • Typed Errors — Granular error classes with instanceof checks and predicate helpers
  • Keep-Alive — Efficient HTTP connection reuse via Node.js agent

Requirements

Installation

npm install evilmail
yarn add evilmail
pnpm add evilmail

Quick Start

import { EvilMail } from 'evilmail';

const client = new EvilMail('your-api-key');

// Create a temporary disposable email address
const temp = await client.tempEmail.create({ domain: 'evilmail.pro', ttlMinutes: 60 });
console.log(`Email: ${temp.email}`);
console.log(`Token: ${temp.sessionToken}`);

// Check session status
const session = await client.tempEmail.getSession(temp.sessionToken);
console.log(`Expires: ${session.expiresAt}`);

// Read a specific message from temp inbox
const message = await client.tempEmail.getMessage(temp.sessionToken, 1);
console.log(`Subject: ${message.subject}`);

// Extract a Google verification code
const code = await client.verification.getCode('google', '[email protected]');
console.log(`OTP Code: ${code.code}`);

// List all email accounts
const accounts = await client.accounts.list();
for (const acct of accounts) {
  console.log(`${acct.email} (${acct.domain})`);
}

// Batch create random email accounts
const batch = await client.randomEmail.createBatch({
  domain: 'yourdomain.com',
  count: 5,
  passwordLength: 20,
});
for (const entry of batch.emails) {
  console.log(`${entry.email}: ${entry.password}`);
}

// Clean up
await client.tempEmail.delete(temp.sessionToken);

CommonJS Usage

const { EvilMail } = require('evilmail');

const client = new EvilMail('your-api-key');

async function main() {
  const temp = await client.tempEmail.create({ ttlMinutes: 30 });
  console.log(temp.email);
}

main();

Configuration

import { EvilMail } from 'evilmail';

// Basic
const client = new EvilMail('your-api-key');

// Custom settings
const client = new EvilMail('your-api-key', {
  baseUrl: 'https://evilmail.pro',  // default
  timeout: 60_000,                   // milliseconds, default 30_000
});

// With AbortController for cancellation
const controller = new AbortController();
const client = new EvilMail('your-api-key', {
  signal: controller.signal,
});

// Cancel all in-flight requests
controller.abort();

API Reference

Temporary Email

Create anonymous, disposable email addresses with automatic expiration. Perfect for sign-up verification, automated testing, and privacy protection.

client.tempEmail.create(options?)

Create a new temporary email address.

| Parameter | Type | Required | Description | |-----------|------|----------|-------------| | options.domain | string | No | Preferred domain for the disposable address | | options.ttlMinutes | number | No | Time-to-live in minutes (10, 30, 60, 360, 1440) |

Returns: Promise<TempEmailSession>email, domain, sessionToken, ttlMinutes, expiresAt

client.tempEmail.getSession(token)

Check if a temporary email session is still active and retrieve session details.

client.tempEmail.getMessage(token, uid)

Read a specific message from a temporary email inbox.

client.tempEmail.delete(token)

Permanently delete a temporary email session and all associated messages.

Accounts

Manage persistent email accounts on your custom domains. Requires API key.

client.accounts.list()

Returns: Promise<Account[]>email, domain, createdAt

client.accounts.create({ email, password })

Returns: Promise<CreatedAccount>email

client.accounts.delete(emails)

Returns: Promise<DeleteResult>deletedCount

client.accounts.changePassword({ email, newPassword })

Inbox

Read emails from persistent account inboxes. Requires API key.

client.inbox.list(email)

Returns: Promise<InboxMessage[]>uid, from, subject, date, text, html

client.inbox.getMessage(uid, email)

Returns: Promise<Message>uid, from, to, subject, date, text, html, headers

Verification Codes

Automatically extract OTP verification codes from emails sent by popular services. Requires API key.

client.verification.getCode(service, email)

| Service | Constant | |---------|----------| | Facebook | 'facebook' | | Twitter / X | 'twitter' | | Google | 'google' | | iCloud | 'icloud' | | Instagram | 'instagram' | | TikTok | 'tiktok' | | Discord | 'discord' | | LinkedIn | 'linkedin' |

Returns: Promise<VerificationCode>code, service, email, from, subject, date

VerificationResource.supportedServices()

Static method returning all supported service names.

VerificationResource.isSupported(service)

Static type guard for validating service names.

Random Email

Generate random email accounts with secure auto-generated credentials. Requires API key.

client.randomEmail.preview(passwordLength?)

Returns: Promise<RandomEmailPreview>username, email, password, domain

client.randomEmail.createBatch(params)

| Parameter | Type | Required | Description | |-----------|------|----------|-------------| | params.domain | string | Yes | Domain for the new email accounts | | params.count | number | No | Number of accounts to create | | params.passwordLength | number | No | Length of generated passwords |

Returns: Promise<RandomEmailBatch>count, emails, note?

Domains

List available email domains by tier.

client.domains.list()

Returns: Promise<CustomerDomains>free, premium, customer, packageType, authenticated

client.domains.listPublic()

Returns: Promise<PublicDomains>free, premium, ttlOptions

Shortlinks

Generate short URLs for temporary email sessions and messages.

client.shortlinks.create(params)

| Parameter | Type | Required | Description | |-----------|------|----------|-------------| | params.token | string | Yes | Session token | | params.type | 'read' \| 'open' | Yes | Link type | | params.uid | number | No | Message UID |

Returns: Promise<Shortlink>code, url

Error Handling

The SDK provides a structured error hierarchy with typed exception classes:

import {
  EvilMail,
  EvilMailError,       // Base class for all SDK errors
  ApiError,            // Non-2xx HTTP response
  AuthenticationError, // 401 / 403 — invalid API key
  NotFoundError,       // 404 — resource not found
  RateLimitError,      // 429 — too many requests
  ValidationError,     // 400 / 422 — invalid parameters
  TimeoutError,        // Request timeout exceeded
  ConfigError,         // Client misconfiguration (e.g. missing API key)
} from 'evilmail';

const client = new EvilMail('your-api-key');

try {
  const code = await client.verification.getCode('google', '[email protected]');
  console.log(`Code: ${code.code}`);
} catch (err) {
  if (err instanceof NotFoundError) {
    console.log('No verification email found yet');
  } else if (err instanceof RateLimitError) {
    console.log('Too many requests — slow down');
  } else if (err instanceof AuthenticationError) {
    console.log('Invalid API key');
  } else if (err instanceof ApiError) {
    console.log(`API error ${err.statusCode}: ${err.message}`);
    console.log('Is server error:', err.isServerError);
  } else if (err instanceof TimeoutError) {
    console.log('Request timed out');
  }
}

Predicate Helpers

For functional error checking without instanceof:

import { isNotFoundError, isRateLimitError, isApiError } from 'evilmail';

try {
  await client.inbox.getMessage(999, '[email protected]');
} catch (err) {
  if (isNotFoundError(err)) console.log('Not found');
  if (isRateLimitError(err)) console.log('Rate limited');
  if (isApiError(err)) console.log(`Status: ${err.statusCode}`);
}

ApiError Properties

| Property | Type | Description | |----------|------|-------------| | statusCode | number | HTTP status code | | body | string | Raw response body | | apiStatus | string? | Parsed API status field | | isUnauthorized | boolean | true for 401 | | isForbidden | boolean | true for 403 | | isNotFound | boolean | true for 404 | | isRateLimited | boolean | true for 429 | | isServerError | boolean | true for 5xx |

AbortController Support

Cancel any in-flight request using the native AbortController:

const controller = new AbortController();

// Global abort signal — cancels all requests
const client = new EvilMail('your-api-key', {
  signal: controller.signal,
});

// Cancel after 5 seconds
setTimeout(() => controller.abort(), 5000);

try {
  const temp = await client.tempEmail.create({ ttlMinutes: 60 });
} catch (err) {
  if (err instanceof ApiError && err.message === 'Request aborted') {
    console.log('Request was cancelled');
  }
}

TypeScript

The SDK ships with complete TypeScript declarations for both ESM and CommonJS. All types are exported from the main entry point:

import type {
  TempEmailSession,
  TempEmailInfo,
  Message,
  InboxMessage,
  Account,
  CreatedAccount,
  DeleteResult,
  VerificationCode,
  VerificationService,
  RandomEmailPreview,
  RandomEmailBatch,
  PublicDomains,
  CustomerDomains,
  Shortlink,
  ClientOptions,
} from 'evilmail';

Use Cases

  • Automated Testing & QA — Generate disposable email addresses for Playwright, Puppeteer, Cypress, and Selenium test suites
  • Web Scraping & Automation — Create temp emails for sign-up verification in automation pipelines
  • Email Verification Bots — Automatically extract OTP codes from Google, Facebook, Instagram, and more
  • Account Provisioning — Bulk create and manage email accounts for SaaS platforms
  • Privacy & Anonymity — Use anonymous disposable email addresses to protect user identity
  • CI/CD Pipelines — Integrate email testing into GitHub Actions, GitLab CI, or Jenkins workflows
  • Serverless Functions — Lightweight zero-dependency client for AWS Lambda, Vercel, Cloudflare Workers
  • CLI Tools — Build email automation scripts and command-line utilities with Node.js
  • Backend Services — Native TypeScript support for Express, Fastify, NestJS, and Koa backends
  • Real-time Applications — AbortController support for WebSocket-driven or event-based architectures

Related SDKs

| Language | Package | Repository | |----------|---------|------------| | Node.js | evilmail | Evil-Mail/evilmail-node | | PHP | evilmail/evilmail-php | Evil-Mail/evilmail-php | | Python | evilmail | Evil-Mail/evilmail-python | | Go | evilmail-go | Evil-Mail/evilmail-go |

Links

License

MIT

Support