Security News
The Hidden Blast Radius of the Axios Compromise
The Axios compromise shows how time-dependent dependency resolution makes exposure harder to detect and contain.
By Ahmad Nassri - Apr 01, 2026
New Research: Supply Chain Attack on Axios Pulls Malicious Dependency from npm.Details → →
@lambda-lambda-lambda/cli
Advanced tools
L³ CLI
Command-line tool to create a new L³ application.
Dependencies
Installation
Install the command-line utility using NPM.
$ npm install -g @lambda-lambda-lambda/cli
Usage
Create a new L³ application
Usage: lambda-lambda-lambda create [options]
Options:
--name <value> Application name (Example: restfulApiHandler)
--description <value> Description
--prefix <path> Request prefix (Example: /api) (default: "/")
--timeout <number> Function timeout (in seconds) (default: "15")
--sdk-version <number> AWS SDK for JavaScript version (default: "3")
--runtime <string> Node.js Lambda runtime identifier (default: "nodejs20.x")
--asynchronous Use asynchronous handler? (default: false)
-h, --help display help for command
Install L³ middleware plugin
Usage: lambda-lambda-lambda install [options] <PluginName>
Arguments:
PluginName Plugin name (Example: BasicAuthHandler), list packages if undefined
Options:
-h, --help display help for command
Supported runtimes
| Name | Identifier | SDK | Deprecation (Phase 1) |
|---|---|---|---|
| Node.js 20 | nodejs20.x | 3 | |
| Node.js 18 | nodejs18.x | 3 | *See note below |
| Node.js 16 | nodejs16.x | 2 | Mar 11, 2024 |
| Node.js 14 | nodejs14.x | 2 | Nov 27, 2023 |
(*) While this Node release is currently supported in AWS Lambda, the underlying VS Code Dev Container is no longer supported by VS Code due to deprecated support older Linux build toolchains (glibc >= 2.28 and libstdc++ >= 3.4.2).
If you need to support this release update the devcontainer.json image to:
{
"name": "restfulJsonApi",
"image": "mcr.microsoft.com/devcontainers/typescript-node:0-18",
Developers
CLI options
Compile JavaScript sources from TypeScript to a distribution:
$ npm run compile
Compile and listen for changes (development mode):
$ npm run watch
Run ESLint on project sources:
$ npm run lint
Run Mocha integration tests:
$ npm run test
Contributions
If you fix a bug, or have a code you want to contribute, please send a pull-request with your changes. (Note: Before committing your code please ensure that you are following the TypeScript style guide)
Versioning
This package is maintained under the Semantic Versioning guidelines.
License and Warranty
This package is distributed in the hope that it will be useful, but without any warranty; without even the implied warranty of merchantability or fitness for a particular purpose.
lambda-lambda-lambda/cli is provided under the terms of the MIT license
Author
FAQs
Command-line tool to create a new L³ application.
The npm package @lambda-lambda-lambda/cli receives a total of 40 weekly downloads. As such, @lambda-lambda-lambda/cli popularity was classified as not popular.
We found that @lambda-lambda-lambda/cli demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 11 Mar 2026
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
Supply Chain Attack on Axios Pulls Malicious Dependency from npm
A supply chain attack on Axios introduced a malicious dependency, plain-crypto-js@4.2.1, published minutes earlier and absent from the project’s GitHub releases.
By Socket Research Team - Mar 31, 2026
Research
TeamPCP Compromises Telnyx Python SDK to Deliver Credential-Stealing Malware
Malicious versions of the Telnyx Python SDK on PyPI delivered credential-stealing malware via a multi-stage supply chain attack.
By Socket Research Team - Mar 27, 2026