kristijandraca/is-burner-email

Fast, offline burner / disposable email detection. Three lists (blacklist, whitelist, graylist), two modes (normal, strict), zero runtime deps. PHP port of is-burner-email.

Maintainers

Package info

github.com/kristijandraca/is-burner-email

Language:TypeScript

pkg:composer/kristijandraca/is-burner-email

Statistics

Installs: 4

Dependents: 0

Suggesters: 0

Stars: 0

Open Issues: 0

Security

Advisories: 0

Aikido package health analysis

v1.3.1 2026-04-27 10:28 UTC

Requires

  • php: >=8.1

Requires (Dev)

MIT acc45abf36d75799aa118370f24cc304fbb440e5

  • kristijandraca

emailvalidatortemporarydisposableofflineburner

This package is auto-updated.

Last update: 2026-04-27 10:30:53 UTC

README

Fast, offline burner / disposable email detection. Same three-list model (blacklist / whitelist / graylist) and two modes (normal / strict) across six languages.

Packages

Language Registry Install Docs
JavaScript / TypeScript npm npm install is-burner-email packages/js/
Python PyPI pip install is-burner-email packages/py/
Go go.dev go get github.com/kristijandraca/is-burner-email/packages/go packages/go/
PHP Packagist composer require kristijandraca/is-burner-email packages/php/
C# / .NET NuGet dotnet add package Kristijandraca.IsBurnerEmail packages/csharp/
Kotlin / JVM Maven Central implementation("io.github.kristijandraca:is-burner-email:1.3.1") packages/kotlin/

Every package ships the same bundled domain data and exposes the same API shape.

Shared features

  • Offline. Domain lists are bundled at package-build time. No network calls at runtime.
  • Zero runtime dependencies in every language.
  • Three lists.
    • blacklist — burners (always blocked)
    • whitelist — always allowed; overrides everything else
    • graylist — email alias / forwarding services (SimpleLogin, DuckDuckGo, Firefox Relay); blocked only in strict mode
  • Two modes. normal (blacklist only) or strict (blacklist + graylist)
  • CLI in every languageburner <email> with the same flags and exit codes
  • Refreshed weekly, reviewed before release — a cron rebuilds the aggregated blacklist from upstream sources and opens a PR with the diff; a maintainer reviews and merges it, then cuts a patch release. No upstream change reaches a published package unattended.

Data model

All four packages read the same canonical files in data/:

File Contents Edited by
blacklist.txt Aggregated from 5 upstream sources + extra-blacklist.txt, minus whitelist and graylist auto-generated
whitelist.txt Curated "always allow" list (major providers, companies, IANA test domains) humans
graylist.txt Curated alias / forwarding services humans
extra-blacklist.txt Manually-curated additions to the blacklist humans

scripts/build-lists.ts fetches, merges, and syncs these files into the language packages that need local copies (Go for go:embed, PHP for runtime reads, Python for editable installs, C# for EmbeddedResource, Kotlin for JVM classpath resources). The JS package reads root data/ directly via tsup's text loader.

Monorepo layout

/
├── data/                               # Canonical data (single source of truth)
├── packages/
│   ├── js/                             # npm package
│   ├── py/                             # PyPI package
│   ├── go/                             # Go module
│   ├── php/                            # Composer package
│   ├── csharp/                         # NuGet package
│   └── kotlin/                         # Maven Central package
├── scripts/
│   └── build-lists.ts                  # Fetches sources, rebuilds blacklist, syncs copies
└── .github/workflows/                  # CI + release pipelines

Sources

The blacklist aggregates and deduplicates domains from:

Community

License

MIT