
Research
Two Malicious Rust Crates Impersonate Popular Logger to Steal Wallet Keys
Socket uncovers malicious Rust crates impersonating fast_log to steal Solana and Ethereum wallet keys from source code.
@pangaea-holdings/pg-simple-migrate
Advanced tools
A plain sql database migration tool for postgresql.
A plain sql database migration tool for postgresql.
yarn add @pangaea-holdings/pg-simple-migrate
Update package.json
scripts
{
"dependencies": {
"@pangaea-holdings/pg-simple-migrate": "^0.1.0",
},
"scripts": {
"migrate": "pg-simple-migrate"
}
}
By adding migrate
to scripts you can now access via yarn migrate [CMD]
pg-simple-migrate
requires two tables, migrations
migration_releases
to be created to track migration state.
✅ Ensure that a valid DATABASE_URL
env variable exists (ENV variables automatically loaded from .env)
ex: postrgesql://user:password@localhost:5432/db_name
yarn migrate install
yarn migrate make
This will create two migration files <TIMESTAMP>__<NAME>.sql
and <TIMESTAMP>__<NAME>__rollback.sql
.
The most basic usage looks for all migrations in the migrations-folder
and runs them in order of name (excluding files ending in __rollback.sql
)
yarn migrate up
Every time a yarn migrate up
is run in production it's best practice to supply a --release <GIT SHA TAG>
to tag the release. This way the system can figure out
yarn migrate rollback
yarn migrate rollback --tag <GIT SHA>
yarn migrate install
Creates the migration table
USAGE
$ yarn migrate install
OPTIONS
-m, --migrations-folder=migrations-folder [default: ./db/migrations]
-v, --verbose Show debug information
--db-url=db-url Postgres URL (default env
DATABASE_URL)
yarn migrate make
Make a new migration
USAGE
$ yarn migrate make
OPTIONS
-h, --help show CLI help
-n, --name=name migration name
--migrations-folder=migrations-folder [default: ./db/migrations]
yarn migrate up
Runs migrations
USAGE
$ yarn migrate up
OPTIONS
-f, --file=file Specify a specific migration file
to run [NOT RECOMMENDED IN
PRODUCTION]
-m, --migrations-folder=migrations-folder [default: ./db/migrations]
-v, --verbose Show debug information
--db-url=db-url Postgres URL (default env
DATABASE_URL)
--dry-run Don't execute migration, pretend
only
--release=release Associate all migrations to be run
with a release tag (ex: git commit
sha)
yarn migrate rollback
Rolls back migrations, if supplied with no options rolls back last "batch" of migrations
USAGE
$ yarn migrate rollback
OPTIONS
-m, --migrations-folder=migrations-folder [default: ./db/migrations]
-v, --verbose Show debug information
--db-url=db-url Postgres URL (default env
DATABASE_URL)
--dry-run Don't execute migration, pretend
only
--no-prompt Do not prompt for confirmation of
rollback
--num-batches=num-batches [default: 1]
--release=release Rollback all migrations after a
specific release tag
FAQs
A plain sql database migration tool for postgresql.
We found that @pangaea-holdings/pg-simple-migrate demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Socket uncovers malicious Rust crates impersonating fast_log to steal Solana and Ethereum wallet keys from source code.
Research
A malicious package uses a QR code as steganography in an innovative technique.
Research
/Security News
Socket identified 80 fake candidates targeting engineering roles, including suspected North Korean operators, exposing the new reality of hiring as a security function.