
Research
/Security News
jscrambler npm Package Compromised in Supply Chain Attack
A compromised jscrambler npm release added a malicious preinstall hook that runs hidden native binaries on Linux, macOS, and Windows.
@prisma-next/operations
Advanced tools
Target-neutral operation registry and capability helpers for Prisma Next
Target-neutral operation registry for Prisma Next.
This package provides a generic, target-neutral operation registry. It's part of the core ring and has no dependencies on target-specific packages.
OperationRegistry<T>: Generic interface for registering and iterating operations, parameterized by entry type. register(name, descriptor) keys each entry by an explicit method name supplied at the call site.createOperationRegistry<T>(): Factory function to create operation registriesOperationEntry: Base entry type with self and implOperationDescriptor<T>: Alias for the entry shape used at registration sitesOperationDescriptors<T>: Readonly<Record<string, OperationDescriptor<T>>> — the natural shape contributors return, where the record key IS the method nameParamSpec: Describes an operation parameter (codecId, nullable), used for both arguments and return values@prisma-next/sql-operations (extends with SQL-specific lowering specs)@prisma-next/sql-relational-core (imports ParamSpec for AST and type definitions)@prisma-next/sql-runtime, @prisma-next/framework-components, and other packages that build on the operation registryflowchart TD
subgraph "Core Ring"
OPS[@prisma-next/operations]
end
subgraph "Targets Ring"
SQL_OPS[@prisma-next/sql-operations]
end
subgraph "Lanes Ring"
REL_CORE[@prisma-next/sql-relational-core]
end
subgraph "Runtime Ring"
RT[@prisma-next/runtime]
end
OPS --> SQL_OPS
OPS --> REL_CORE
OPS --> RT
import { createOperationRegistry, type OperationDescriptor } from '@prisma-next/operations';
const registry = createOperationRegistry();
const descriptor: OperationDescriptor = {
self: { codecId: 'pg/vector@1' },
impl: () => ({ returnType: { codecId: 'pg/float8@1', nullable: false } }),
};
registry.register('cosineDistance', descriptor);
const entries = registry.entries(); // Record<string, OperationEntry>
import { createOperationRegistry, type OperationEntry } from '@prisma-next/operations';
interface MyEntry extends OperationEntry {
readonly extra: string;
}
const registry = createOperationRegistry<MyEntry>();
registry.register('myMethod', {
self: { codecId: 'pg/int4@1' },
impl: () => undefined as never,
extra: 'custom data',
});
This package is part of the framework domain, core layer, shared plane:
packages/1-framework/1-core/operationsFAQs
Target-neutral operation registry and capability helpers for Prisma Next
The npm package @prisma-next/operations receives a total of 26,459 weekly downloads. As such, @prisma-next/operations popularity was classified as popular.
We found that @prisma-next/operations demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 3 open source maintainers collaborating on the project.
Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Research
/Security News
A compromised jscrambler npm release added a malicious preinstall hook that runs hidden native binaries on Linux, macOS, and Windows.

Research
/Security News
A malicious .NET package is typosquatting the Braintree SDK to steal live payment card data, merchant API keys, and host secrets from production apps.

Security News
/Research
Compromised Injective SDK npm version 1.20.21 exfiltrates wallet private keys and mnemonics through fake telemetry functionality.