Security News
Opengrep Emerges as Open Source Alternative Amid Semgrep Licensing Controversy
Opengrep forks Semgrep to preserve open source SAST in response to controversial licensing changes.
@balena/compose
Advanced tools
Complete toolkit to build docker-compose.yml files and optionally deploy them to balenaCloud
Complete toolkit to build docker-compose.yml files and optionally deploy them to balenaCloud.
Important: balena-compose is stable and perfectly usable but also, fundamentally, just a merge of several pre-existing different modules, that are merely re-exported from this one. You should expect a complete rewrite of the exported API in the medium term. What follows are pretty much the concatenated READMEs of these modules.
This module is designed to make it easy to build a composition given a representation of this composition, and a tar stream. The output will be several images present on the given docker daemon.
function splitBuildStream(composition: Composition, buildStream: ReadableStream): Promise<BuildTask[]>
Given a Composition which conforms to the type from parse
and a stream which will produce a tar archive, split this tar archive into a set of build tasks which can then be further processed.
function performResolution(
tasks: BuildTask[],
architecture: string,
deviceType: string
): Promise<BuildTask[]>
Given a list of build tasks, resolve the projects to a form which the docker
daemon can build. Currently this function supports all project types which
resolve
supports.
Note that this function will also populate the dockerfile
and projectType
values in the build tasks.
function performBuilds(
tasks: BuildTask[],
docker: Dockerode
): Promise<LocalImage[]>
Given a list of build tasks, perform the task necessary for the LocalImage to be produced. A local image represents an image present on the docker daemon given.
Note that one should assign a stream handling function for build output OR a
progress handling function for image pull output before calling this
function. The fields for these functions are streamHook
and progressHook
.
import { multibuild, parse } from '@balena/compose';
const { Composition, normalize } = parse;
const { splitBuildStream, performBuilds } = multibuild;
// Get a tar stream and composition from somewhere
const stream = getBuildStream();
const composeFile = getComposeFile();
const docker = getDockerodeHandle();
// Parse the compose file
const comp = normalize(composeFile);
splitBuildStream(comp, stream)
.then((tasks) => {
return performResolution(tasks, 'armv7hf', 'raspberrypi3');
})
.then((tasks) => {
tasks.forEach((task) => {
if (task.external) {
task.progressHook = (progress) => {
console.log(task.serviceName + ': ' + progress);
};
} else {
task.streamHook = (stream) => {
stream.on('data', (data) => {
console.log(task.serviceName + ': ', data.toString());
});
};
}
return task;
}
})
.then(() => {
return performBuilds(builds, docker);
})
.then((images) => {
// Do something with your images
});
A modular, plugin-based approach to building docker containers. build
uses streams and hooks to provide a system which can be added to a build pipeline easily. With a simple but flexible interface, this module is meant to take the pain out of automating docker builds.
All building is done via the Builder
object.
The Builder
API has two top-level methods, which are used to trigger builds;
createBuildStream(buildOpts: Object, hooks: BuildHooks, handler: ErrorHandler): ReadWriteStream
Initialise a docker daemon and set it up to wait for some streaming data. The stream is returned to the caller for both reading and writing. Success and failure callbacks are provided via the hooks interface (see below). buildOpts
is passed directly to the docker daemon and the expected input by the daemon is a tar stream.
buildDir(directory: string, buildOpts: Object, hooks: BuildHooks, handler: ErrorHandler): ReadWriteStream
Inform the docker daemon to build a directory on the host. A stream is returned for reading, and the same success/failure callbacks apply. buildOpts
is passed directly to the docker daemon.
handler
parameter:If an exception is thrown from within the hooks, because it is executing in a different context to the initial api call they will not be propagated. Using the error handler means that you can handle the error as necessary (for instance propagate to your global catch, or integrate it into a promise chain using reject
as a handler). The error handler is optional. Note that the error handler will not be called with a build error, instead with that being dropped to the buildFailure
hook, but if that hook throws, the handler will be called.
Currently the hooks supported are;
buildStream(stream: ReadWriteStream): void
Called by the builder when a stream is ready to communicate directly with the daemon. This is useful for parsing/showing the output and transforming any input before providing it to the docker daemon.
buildSuccess(imageId: string, layers: string[]): void
Called by the builder when the daemon has successfully built the image. imageId
is the sha digest provided by the daemon, which can be used for pushing, running etc. layers
is a list of sha digests pointing to the intermediate layers used by docker. Can be useful for cleanup.
buildFailure(error: Error)
Called by the builder when a build has failed for whatever reason. The reason is provided as a standard node error object. This was also close the build stream. No more hooks will be called after this.
Examples are provided in typescript.
import { build } from '@balena/compose';
const { Builder, BuildHooks } = build;
const builder = Builder.fromDockerOpts({ socketPath: '/var/run/docker.sock' })
const hooks: BuildHooks = {
buildStream: (stream: NodeJS.ReadWriteStream): void => {
stream.pipe(process.stdout)
},
buildSuccess: (imageId: string, layers: string[]): void => {
console.log(`Successful build! ImageId: ${imageId}`)
},
buildFailure: (error: Error): void => {
console.error(`Error building container: ${error}`)
}
}
builder.buildDir('./my-dir', {}, hooks)
import * as fs from 'fs'
import { build } from '@balena/compose';
const { Builder, BuildHooks } = build;
const builder = Builder.fromDockerOpts({ socketPath: '/var/run/docker.sock' })
const getHooks = (archive: string): BuildHooks => {
return {
buildSuccess: (imageId: string, layers: string[]): void => {
console.log(`Successful build! ImageId: ${imageId}`)
},
buildFailure: (error: Error): void => {
console.error(`Error building container: ${error}`)
},
buildStream: (stream: NodeJS.ReadWriteStream): void => {
// Create a stream from the tar archive.
// Note that this stream could be from a webservice,
// or any other source. The only requirement is that
// when consumed, it produces a valid tar archive
const tarStream = fs.createReadStream(archive)
// Send the tar stream to the docker daemon
tarStream.pipe(stream)
stream.pipe(process.stdout)
}
}
}
builder.createBuildStream({}, getHooks('my-archive.tar'))
Transpose a Dockerfile to use qemu-linux-user and emulate a build. Using this module as a pre-processor for Dockerfiles which will not run on your system natively, along with a version of qemu-linux-user
suitable for emulation, will produce a Dockerfile which will run seamlessly.
tranpose(dockerfile: string, options: TranposeOptions): string
Given a Dockerfile and tranpose options, produce a Dockerfile which will run on the same architecture as the qemu provided in options (detailed below).
transposeTarStream(tarStream: ReadableStream, options: TransposeOptions, dockerfileName = 'Dockerfile'): Promise<ReadableStream>
Given a tar archive stream, this function will extract the Dockerfile (or
file named with the given dockerfileName
parameter) and transpose it. It then
creates a new tar stream, and returns it wrapped in a Promise.
getBuildThroughStream(options: TransposeOptions): ReadWriteStream
Get a through stream, which when piped to will remove all extra output that is added as a result of this module transposing a Dockerfile.
This function enables 'silent' emulated builds, with the only difference in output from a native build being that there is an extra COPY step, where the emulator is added to the container
TranposeOptions
is an interface with two required fields;
hostQemu
- The location of the qemu binary on the host filesystemcontainerQemu
- Where qemu should live on the built containerA version of qemu with execve support is required, which can be retrieved from https://github.com/balena-io/qemu.
Resolve balena project bundles into a format recognised by the docker daemon.
A project bundle is a tar archive which contains a type of Dockerfile and metadata used to create a Dockerfile proper, which docker can understand.
Currently default resolvers included are;
%%RESIN_MACHINE_NAME%%
%%RESIN_ARCH%%
%%BALENA_MACHINE_NAME%%
%%BALENA_ARCH%%
Resolve supports the adding of generic resolvers, by implementing the resolver.d.ts
interface in ./lib/resolve
. Examples of this can be found in the lib/resolve/resolvers/
directory.
Your resolvers can then be passed to the resolveBundle
function.
Resolve takes a tar stream and outputs a tar stream, which can be passed to the docker daemon or further processed.
Process dockerfile templates, a format that allows replacing variables in dockerfiles. The format is the same as a Dockerfile, but augmented with variables.
Variables have the format %%VARIABLE_NAME%%, where variable name starts with an uppercase letter, and can contain uppercase letters and underscores.
Variables in comments (lines that start with #) are not processed.
The module exposes a single process
method. It receives a dockerfile template body
and key-value pairs and replaces variables in the template.
If the template has variables that cannot be found, it throws an error.
Example:
import { dockerfile } from '@balena/compose';
const variables = {
BASE: 'debian',
TAG: 'latest',
};
const res = dockerfile.process('FROM %%BASE%%:%%TAG%%', variables);
console.log(res);
// Output:
// FROM debian:latest
Parse docker-compose.yml files into a general, usable and fully typed object.
Create releases on balenaCloud without having to deal with the boilerplate.
6.0.0 - 2024-12-11
pinejs-client-core
a peer dependency [myarmolinsky]FAQs
Complete toolkit to build docker-compose.yml files and optionally deploy them to balenaCloud
The npm package @balena/compose receives a total of 628 weekly downloads. As such, @balena/compose popularity was classified as not popular.
We found that @balena/compose demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Opengrep forks Semgrep to preserve open source SAST in response to controversial licensing changes.
Security News
Critics call the Node.js EOL CVE a misuse of the system, sparking debate over CVE standards and the growing noise in vulnerability databases.
Security News
cURL and Go security teams are publicly rejecting CVSS as flawed for assessing vulnerabilities and are calling for more accurate, context-aware approaches.