Security News
Maven Central Adds Sigstore Signature Validation
Maven Central now validates Sigstore signatures, making it easier for developers to verify the provenance of Java packages.
By Sarah Gooding - Feb 06, 2025
New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More →
@apexdevtools/metadata-gulp
Advanced tools
@apexdevtools/metadata-gulp
Downloader for Salesforce metadata to support Apex static analysis
metadata-gulp
Salesforce metadata download library. Pulls metadata from an org in a format that can be used with apex-ls based tools to perform off-line semantics analysis of Apex code.
Usage
To start a download use update() from Gulp:
async update(
workspacePath: string,
logger: Logger,
connection: JSConnection | null,
namespaces: string[],
partialLoad: boolean
): Promise<void>
The workspacePath must be the directory where your sfdx-project.json file is located. The metadata is downloaded into a '.apexlink/gulp' directory relative to this.
If you have an open jsforce connection you can pass that, if you pass null a new connection will be created.
Metadata is download independently for each passed namespace. For orgs without a namespace you can use the pseudo namespace unmanaged. If partialLoad is false, existing downloaded metadata for namespaces not passed to update() will be removed automatically.
The library also supplies some helper functions that you may find useful.
To obtain the org's default namespace:
async getOrgNamespace(
workspacePath: string,
connection: JSConnection | null
): Promise<string | null | undefined>
This will return string | null on success or undefined if the Organization table can not be queried.
To obtain the namespace & package description for packages with namespaces on the org:
async getOrgPackageNamespaces(
workspacePath: string,
connection: JSConnection | null
): Promise<NamespaceInfo[]>
Development
Building
This project uses the pnpm package manager.
pnpm install
pnpm build
To run unit tests:
pnpm test
To test bundling using webpack:
pnpm test:pack
node test-bundle/bundle.js
This should execute without error.
Execute manual test script with ts-node using the run script:
# Run gulp on a project with an existing default org
pnpm run:script -- ./src/scripts/main.ts <workspaceDir> <namespace | unmanaged>
License
All the source code included uses a 3-clause BSD license, see LICENSE for details.
3.0.1 - 2023-12-08
- Fix crash from
rimrafno longer having default export.
Keywords
FAQs
Downloader for Salesforce metadata to support Apex static analysis
The npm package @apexdevtools/metadata-gulp receives a total of 9 weekly downloads. As such, @apexdevtools/metadata-gulp popularity was classified as not popular.
We found that @apexdevtools/metadata-gulp demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 08 Dec 2023
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
38% of CISOs Fear They’re Not Moving Fast Enough on AI
CISOs are racing to adopt AI for cybersecurity, but hurdles in budgets and governance may leave some falling behind in the fight against cyber threats.
By Sarah Gooding - Feb 04, 2025
Research
Security News
Go Supply Chain Attack: Malicious Package Exploits Go Module Proxy Caching for Persistence
Socket researchers uncovered a backdoored typosquat of BoltDB in the Go ecosystem, exploiting Go Module Proxy caching to persist undetected for years.
By Kirill Boychenko - Feb 04, 2025