Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@7shifts/teamsjson
Advanced tools
Describe your repository ownership with teams.json. Configure your teams, contexts, and let teams.json generate common configuration files for you.
Every teams.json has a "teams"
property that describes the teams in your repository. Teams own things. Our opinion
is that teams own contexts, folders, or files.
Tests can be executed with npm test
. There are test and fixtures in ./tests
directory.
Run a build with npm run build
.
Running teams can be done with npm run teams
.
teams.json ships with some plugins ready to go. You can list all detected plugins with plugins:list
.
codeowners
plugin will generate your CODEOWNERS file for you."plugins"
directive in teams.json can point
to any other plugin file and be run. (E.g. datadog output, or argo workflow generators)FAQs
Team ownership
The npm package @7shifts/teamsjson receives a total of 2 weekly downloads. As such, @7shifts/teamsjson popularity was classified as not popular.
We found that @7shifts/teamsjson demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 10 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.