Security News
RubyGems.org Adds New Maintainer Role
RubyGems.org has added a new "maintainer" role that allows for publishing new versions of gems. This new permission type is aimed at improving security for gem owners and the service overall.
@auto-it/first-time-contributor
Advanced tools
Thank first time contributors for their work right in your release notes.
Thank first time contributors for their work right in your release notes.
This plugin is not included with the auto
CLI installed via NPM. To install:
npm i --save-dev @auto-it/first-time-contributor
# or
yarn add -D @auto-it/first-time-contributor
Simply add the plugins to your auto configuration.
{
"plugins": ["first-time-contributor"]
}
v10.37.0 (Fri May 20 2022)
:tada: This release contains work from new contributors! :tada:
Thanks for all your work!
:heart: Ketan Reddy (@KetanReddy)
:heart: Josh Biddick (@sonic-knuckles)
auto
, @auto-it/version-file
FAQs
Thank first time contributors for their work right in your release notes.
The npm package @auto-it/first-time-contributor receives a total of 8,758 weekly downloads. As such, @auto-it/first-time-contributor popularity was classified as popular.
We found that @auto-it/first-time-contributor demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
RubyGems.org has added a new "maintainer" role that allows for publishing new versions of gems. This new permission type is aimed at improving security for gem owners and the service overall.
Security News
Node.js will be enforcing stricter semver-major PR policies a month before major releases to enhance stability and ensure reliable release candidates.
Security News
Research
Socket's threat research team has detected five malicious npm packages targeting Roblox developers, deploying malware to steal credentials and personal data.