Research
npm Malware Targets Telegram Bot Developers with Persistent SSH Backdoors
Malicious npm packages posing as Telegram bot libraries install SSH backdoors and exfiltrate data from Linux developer machines.
By Kush Pandya - Apr 18, 2025
You're Invited: Meet the Socket team at BSidesSF and RSAC - April 27 - May 1.RSVP →
@cdktf/provider-google
Advanced tools
Terraform CDK google Provider ~> 3.0
This repo builds and publishes the Terraform google Provider bindings for cdktf.
Current build targets are:
- npm
- Pypi
Versioning
This project is explicitly not tracking the Terraform google Provider version 1:1. In fact, it always tracks latest of ~> 3.0 with every release. If there scenarios where you explicitly have to pin your provider version, you can do so by generating the provider constructs manually.
These are the upstream dependencies:
If there are breaking changes (backward incompatible) in any of the above, the major version of this project will be bumped. While the Terraform Engine and the Terraform google Provider are relatively stable, the Terraform CDK is in an early stage. Therefore, it's likely that there will be breaking changes.
Features / Issues / Bugs
Please report bugs and issues to the terraform cdk project:
Contributing
projen
This is mostly based on projen, which takes care of generating the entire repository.
cdktf-provider-project based on projen
There's a custom project builder which encapsulate the common settings for all cdktf providers.
provider version
The provider version can be adjusted in ./.projenrc.js.
FAQs
Prebuilt google Provider for Terraform CDK (cdktf)
The npm package @cdktf/provider-google receives a total of 10,969 weekly downloads. As such, @cdktf/provider-google popularity was classified as popular.
We found that @cdktf/provider-google demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 4 open source maintainers collaborating on the project.
Package last updated on 23 Sep 2020
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
Python Tools Are Quickly Adopting the New pylock.toml Standard
pip, PDM, pip-audit, and the packaging library are already adding support for Python’s new lock file format.
By Sarah Gooding - Apr 18, 2025
Product
Go Support Is Now Generally Available
Socket's Go support is now generally available, bringing automatic scanning and deep code analysis to all users with Go projects.
By Peter van der Zee, Ryan Eberhardt - Apr 17, 2025