@brassproof/create
Advanced tools
CLI tool to scaffold BRASS-protected applications with a single command.
npx @brassproof/create create
Or install globally:
npm install -g @brassproof/create
brass create
# Create Next.js app
npx @brassproof/create create next-app my-app
# Create Cloudflare Worker
npx @brassproof/create create worker my-worker
Creates a Next.js 14 application with:
useBrass)withBrassVerifier)Generated structure:
my-app/
├── app/
│ ├── page.tsx # Example form using useBrass
│ └── api/
│ └── submit/
│ └── route.ts # Protected API route
├── package.json
├── .env.example
└── README.md
Next steps:
cd my-app
npm install
cp .env.example .env.local # Add your BRASS credentials
npm run dev
Creates a Cloudflare Worker with:
createBrassWorker)Generated structure:
my-worker/
├── src/
│ └── index.ts # Worker with BRASS protection
├── wrangler.toml # Cloudflare configuration
├── package.json
└── README.md
Next steps:
cd my-worker
npm install
wrangler kv:namespace create BRASS_KV # Create KV namespace
# Update wrangler.toml with KV namespace ID
wrangler secret put BRASS_SECRET_KEY
wrangler secret put BRASS_ISSUER_PUBKEY
wrangler deploy
Running brass create without arguments starts interactive mode:
$ brass create
🛡️ BRASS Project Creator
? What type of project do you want to create? ›
Next.js App (with React hooks)
Cloudflare Worker
? Project name: › my-brass-app
Create .env.local:
BRASS_SECRET_KEY=your_secret_key_here
BRASS_ISSUER_PUBKEY=issuer_public_key_hex
Set secrets via Wrangler:
wrangler secret put BRASS_SECRET_KEY
wrangler secret put BRASS_ISSUER_PUBKEY
Get issuer public key:
curl https://brass-issuer.tomjwxf.workers.dev/pub
create [type] [name]Create a new BRASS-protected project.
Arguments:
type - Project type: next-app or workername - Project directory nameOptions:
-h, --help - Display help-V, --version - Display versionExamples:
# Interactive mode
brass create
# Create Next.js app
brass create next-app my-nextjs-app
# Create Cloudflare Worker
brass create worker my-worker
Dependencies:
next - Next.js frameworkreact - React library@brassproof/nextjs - BRASS Next.js integration@brassproof/verifier - Core verifiertailwindcss - StylingFeatures:
Dependencies:
@brassproof/cloudflare - BRASS Cloudflare integration@brassproof/verifier - Core verifierwrangler - Cloudflare CLIFeatures:
After creating a project, you can customize:
Edit the rateLimits configuration:
// Next.js: app/api/submit/route.ts
export const POST = withBrassVerifier(handler, {
scope: 'custom-scope',
rateLimits: {
'custom-scope': { maxRequests: 100, windowSeconds: 3600 }
}
})
// Worker: src/index.ts
export default {
fetch: createBrassWorker(handler, {
rateLimits: {
'message': { maxRequests: 50, windowSeconds: 3600 }
}
})
}
// Worker
export default {
fetch: createBrassWorker(handler, {
corsHeaders: {
'Access-Control-Allow-Origin': 'https://yourdomain.com',
}
})
}
The CLI will prompt you to overwrite. Choose yes to replace the existing directory.
Ensure you have Node.js 18+ installed:
node --version
Install Wrangler globally:
npm install -g wrangler
MIT - see LICENSE for details.
FAQs
CLI tool to scaffold BRASS-protected applications
We found that @brassproof/create demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Node.js has paused its bug bounty program after funding ended, removing payouts for vulnerability reports but keeping its security process unchanged.
Security News
The Axios compromise shows how time-dependent dependency resolution makes exposure harder to detect and contain.
Research
A supply chain attack on Axios introduced a malicious dependency, plain-crypto-js@4.2.1, published minutes earlier and absent from the project’s GitHub releases.