Security News
tea.xyz Spam Plagues npm and RubyGems Package Registries
Tea.xyz, a crypto project aimed at rewarding open source contributions, is once again facing backlash due to an influx of spam packages flooding public package registries.
@condenast/flyway-schema-validator
Advanced tools
Readme
Does what it says on the tin.
See https://condenast.github.io/flyway-api-docs/.
To use as a node.js module, make sure you're in your project source and run:
npm i --save @condenast/flyway-schema-validator
To use as a command line module, install globally with the following command:
npm i -g @condenast/flyway-schema-validator
const validator = require('@condenast/flyway-schema-validator');
const isValid = validator(someFlywayAPIObject);
try {
// invalid
const invalidThrows = validator({ invalid: true });
} catch (err) {
// error describes the validation issues.
}
*nix Piping:
cat someObj.json | flyway-schema-validator
Reading from a file directly:
flyway-schema-validator -f ./someObj.json
To publish updates, you must bump the version number using npm version major|minor|patch
, and push the generated commit and tag to github.
CI will detect a new tag push and automatically build and publish it.
Generally the workflow after merging a PR should be
git checkout master
git pull
npm version patch|minor|major|v11.x.x # <--- this also generates a git commit and tags it based on the new version
git push origin master # push that commit to master
git push origin --tags
CI will now pickup and build your changes.
NOTE: we use a new branch that tracks origin master so if you have accidentally commited to master locally, that doesn't get published without any PR. If you're confident that your master matches origin EXACTLY feel free to do this on your local master branch.
MIT.
FAQs
A joi schema validator for flyways types
The npm package @condenast/flyway-schema-validator receives a total of 84 weekly downloads. As such, @condenast/flyway-schema-validator popularity was classified as not popular.
We found that @condenast/flyway-schema-validator demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 451 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Tea.xyz, a crypto project aimed at rewarding open source contributions, is once again facing backlash due to an influx of spam packages flooding public package registries.
Security News
As cyber threats become more autonomous, AI-powered defenses are crucial for businesses to stay ahead of attackers who can exploit software vulnerabilities at scale.
Security News
UnitedHealth Group disclosed that the ransomware attack on Change Healthcare compromised protected health information for millions in the U.S., with estimated costs to the company expected to reach $1 billion.