Security News
PyPI’s New Archival Feature Closes a Major Security Gap
PyPI now allows maintainers to archive projects, improving security and helping users make informed decisions about their dependencies.
By Sarah Gooding - Jan 30, 2025
New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More →
@getty.io/taskapp
Advanced tools
Getty/IO Commit Message Validator.
This package provides you a binary that you can use as a git hook to validate the commit message using the Getty/IO commit standard.
The Getty/IO commit standard should have a the following format:
git commit -m <scope>: <subtask or title>, task: <url>, spent: <time spent e.g. 2h or 2h30m>
Commit Requirements
scope: can be one of ['chore', 'docs', 'feat', 'fix', 'refactor', 'style', 'test']
task: trello task url
spent: time spent on the task or subtask with the format 1h or 1h30m.
E.g.
git commit -m "feat: add commit validation, task: https://trello.com/c/hfVM9KNV/add-validation-rules, spent: 2h"
Installation
This module is distributed via npm which is bundled with node and should be installed as one of your project's devDependencies:
1. Install husky
npm install husky@beta --save-dev
2. Install this package as one of your project's devDependencies
npm install @getty.io/taskapp --save-dev
or
yarn add @getty.io/taskapp --dev
3. Add husky hook in package.json
{
"husky": {
"hooks": {
"commit-msg": "taskapp"
}
}
}
Keywords
FAQs
Getty/IO commit-msg hook validator
The npm package @getty.io/taskapp receives a total of 1 weekly downloads. As such, @getty.io/taskapp popularity was classified as not popular.
We found that @getty.io/taskapp demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 6 open source maintainers collaborating on the project.
Package last updated on 12 Jan 2018
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
Security News
North Korean APT Lazarus Targets Developers with Malicious npm Package
Malicious npm package postcss-optimizer delivers BeaverTail malware, targeting developer systems; similarities to past campaigns suggest a North Korean connection.
By Kirill Boychenko, Peter van der Zee - Jan 29, 2025
Security News
CISA Brings KEV Data to GitHub
CISA's KEV data is now on GitHub, offering easier access, API integration, commit history tracking, and automated updates for security teams and researchers.
By Sarah Gooding - Jan 29, 2025