Security News
The Unpaid Backbone of Open Source: Solo Maintainers Face Increasing Security Demands
Solo open source maintainers face burnout and security challenges, with 60% unpaid and 60% considering quitting.
@bring-it/cli
Advanced tools
SFTP deployment tool for frontend.
@bring-it/cli
follows the principle of Convention over configuration, provide sftp like but lite version Command-Line Interface.
npm install @bring-it/cli --global
bring-it [command] <options>
bring-it sftp [server]
SFTP deployment command
Positionals:
server URI as user@hostname[:port][/path]
or Host section in '.ssh/config'
Options:
-c, --cwd default: .bring-it
-k, --key example: .ssh/id_rsa [required]
When not match URI, bring-it
will treat it as a Host name in .ssh/config
.
It support .ssh/config like config with keys: Hostname, Port, User
, and a custom key: Path
bring-it sftp dev
# example: .ssh/config
# other Host will inherit from *
Host *
User root
# = root@192.168.1.200:22/mnt
Host dev
Hostname 192.168.1.200
Path /mnt
# = deploy@example.org:2222
Host docs
Hostname example.org
Port 2222
User deploy
bring-it pack [target...]
Pack files when support
Positionals:
target glob pattern of files or directories [array]
Options:
-n, --name archive output file name [default: "pack"]
For a little bit safer, @bring-it/cli
will always upload files in order by: OTHER, SVG, STYLE, SCRIPT, HTML, XML/JSON/YAML
.
Not like the HTTP URL, in the SFTP URI, Port
is 22 by default.
Path
will point to /
by default, so don't forget set ChrootDirectory in /etc/ssh/sshd_config
to a safe path on server.
Atomic write is not support when ssh/sftp/scp
transfer, make your bundle support long-term caching, it will be safer when uploading.
To make sure unexpected file transferring won't happen.
Not safe, and typing special characters to the terminal might not easy.
FAQs
Common command line interface of 'bring-it'
The npm package @bring-it/cli receives a total of 198 weekly downloads. As such, @bring-it/cli popularity was classified as not popular.
We found that @bring-it/cli demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Solo open source maintainers face burnout and security challenges, with 60% unpaid and 60% considering quitting.
Security News
License exceptions modify the terms of open source licenses, impacting how software can be used, modified, and distributed. Developers should be aware of the legal implications of these exceptions.
Security News
A developer is accusing Tencent of violating the GPL by modifying a Python utility and changing its license to BSD, highlighting the importance of copyleft compliance.