Huge News!Announcing our $40M Series B led by Abstract Ventures.Learn More
Socket
Sign inDemoInstall
Socket

@auth0/component-cdn-uploader

Package Overview
Dependencies
Maintainers
31
Versions
7
Alerts
File Explorer

Advanced tools

Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

@auth0/component-cdn-uploader

Tool to upload web widgets to Auth0 CDN via S3 bucket.

  • 2.2.0
  • npm
  • Socket score

Version published
Weekly downloads
394
decreased by-66.09%
Maintainers
31
Weekly downloads
 
Created
Source

component-cdn-uploader

Tool to upload web widgets to Auth0 CDN via S3 bucket.

Install

via yarn

yarn add @auth0/component-cdn-uploader --dev

via npm

npm install @auth0/component-cdn-uploader --save-dev

Configuration

In your package.json add the following entry

"ccu": {
  "cdn": "https://cdn.auth0.com",
  "mainBundleFile": "lock.min.js",
  "bucket": "mybucket",
  "remoteBasePath": "js"
}

where

  • cdn: url where your CDN can be found so the lib checks if a version is already uploaded
  • mainBundleFile: name of the file used when checking the CDN if a specific version is already uploaded
  • bucket: name of the S3 bucket to upload to
  • remoteBasePath: path in the bucket where to store the component.

You can also have the following entries

  • name: name of the folder inside remoteBasePath that overrides the default from package's name.
  • snapshotName: name of the snapshot version that will override the default development

Files Cryptographic Digest

If you need the digest of the files you upload you can also add inside ccu in your package.json the following

"digest": {
  "hashes": ["sha384"]
}

This will generate the sha384 digest of every file to upload and store it in a different file named <filename>.<hash-method>. In the case you only need to hash only some files, e.g. JS only

"digest": {
  "hashes": ["sha384"],
  "extensions": [".js"]
}

The valid types of digests are sha256, sha384 and sha512, if none is specified the tool will generate no digest files.

Usage

$ ccu [options] [directory ...]

options

  • --type (string) type of upload flow to perform (one of 'default', 'release', 'snapshot')
  • --only-full only upload full major-minor-patch version, ignored if type is 'snapshot'
  • --dry perform a dry run
  • --snapshot-name (string) name used for snapshot. Default is 'development'
  • --silent run in silent mode
  • --trace run with verbose log

types

  • default: will upload, if it does not exist in cdn (checking mainBundleFile existence), using full and major-minor tags (or full only if only-full is specified) or just the snapshot tag.
  • release: will only upload, if it does not exist in cdn (checking mainBundleFile existence), using full and major-minor tags (or full only if only-full is specified) and no snaphost tag.
  • snapshot: will always upload the snapshot tag.

Issue Reporting

If you have found a bug or if you have a feature request, please report them at this repository issues section. Please do not report security vulnerabilities on the public GitHub issue tracker. The Responsible Disclosure Program details the procedure for disclosing security issues.

Author

Auth0

License

This project is licensed under the MIT license. See the LICENSE file for more info.

FAQs

Package last updated on 01 Nov 2018

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

SocketSocket SOC 2 Logo

Product

  • Package Alerts
  • Integrations
  • Docs
  • Pricing
  • FAQ
  • Roadmap
  • Changelog

Packages

npm

Stay in touch

Get open source security insights delivered straight into your inbox.


  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc