Security News
Another Round of TEA Protocol Spam Floods npm, But It’s Not a Worm
Recent coverage mislabels the latest TEA protocol spam as a worm. Here’s what’s actually happening.
By Philipp Burckhardt - Nov 14, 2025
@compas/cli
Advanced tools
@compas/cli
CLI to help with your local development environment, testing and more. Take a look at the documentation.
Reference
For the full reference, view the
documentation. Below is the short
reference, generated via compas help.
Usage: compas COMMAND
The Compas CLI
Unified backend tooling.
Examples:
- compas docker up
- compas lint --jsdoc
- compas visualise erd --generated-directory ./src/generated
References:
- Docs: https://compasjs.com
- Source: https://github.com/compasjs/compas
- Issues: https://github.com/compasjs/compas/issues
Commands:
check-env Various checks helping with a better Compas experience.
code-mod Execute code-mods to help migrating to new Compas versions.
completions Configure shell auto-complete for this CLI.
docker Manage common docker components.
help Display help for any of the available commands.
init Init various files in the current project.
lint Lint all project files.
migrate Run PostgreSQL migrations via the @compas/store migration system.
run Run arbitrary JavaScript files, scripts defined in the package.json and scripts located in the scripts directory.
test Run all tests in your project.
version Print the installed Compas version and exit
visualise Visualise various code-generated structures.
watch Run the command, restarting it when file changes happen.
Flags:
-h, --help Display information about the current command. (boolean)
Run 'compas help COMMAND' for more information of a specific sub command.
Features
- feat(code-gen): support generating valid files when using Node.js type
stripping features
628f1b
Bug fixes
- fix(code-gen): handle extra parameter in
useMutationsuccess callbackbec622
Dependency updates
- build(deps): bump actions/setup-node from 4 to 5
(#3782)
2994a8 - build(deps): bump @aws-sdk/client-s3 from 3.876.0 to 3.895.0 (#3784, #3788, #3791, #3792, #3795, #3797, #3801, #3804, #3808, #3809, #3813)
- build(deps): bump @aws-sdk/lib-storage from 3.876.0 to 3.895.0 (#3784, #3788, #3791, #3792, #3795, #3797, #3801, #3804, #3808, #3809, #3813)
- build(deps): bump sharp from 0.34.3 to 0.34.4 (#3807)
- build(deps): bump tar from 7.4.3 to 7.5.1 (#3811, #3815)
- build(deps): bump pino from 9.7.0 to 9.11.0
FAQs
CLI containing utilities and simple script runner
We found that @compas/cli demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 26 Sep 2025
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
PyPI Expands Trusted Publishing to GitLab Self-Managed as Adoption Passes 25 Percent
PyPI adds Trusted Publishing support for GitLab Self-Managed as adoption reaches 25% of uploads
By Sarah Gooding - Nov 14, 2025
Research
/Security News
Malicious Chrome Extension Exfiltrates Seed Phrases, Enabling Wallet Takeover
A malicious Chrome extension posing as an Ethereum wallet steals seed phrases by encoding them into Sui transactions, enabling full wallet takeover.
By Kirill Boychenko - Nov 12, 2025