Security News
The Changelog Podcast: Practical Steps to Stay Safe on npm
Learn the essential steps every developer should take to stay secure on npm and reduce exposure to supply chain attacks.
By Sarah Gooding -  Oct 31, 2025
đ DAY 5 OF LAUNCH WEEK: Introducing Socket Firewall Enterprise.Learn more â
@prisma/accelerate-contract
Advanced tools
accelerate-contract
â ď¸ Warning: This package is intended for Prisma's internal use. Its release cycle does not follow SemVer, which means we might release breaking changes (change APIs, remove functionality) without any prior warning.
Purpose
Accelerate has ownership of the DataProxyEngine (now AccelerateEngine). This
engine is handed over to the Client by the Accelerate extension. The Client uses
the engine to communicate with the Accelerate service. Accelerate uses the
Client to formulate and execute queries. This means we need some kind of
contract between the Client and the Accelerate service.
If the Client breaks this contract, that translates into a breaking change for
Accelerate users. This is why we need to be very careful when changing the
AccelerateEngine and the AccelerateEngineConfig.
How it works
Both @prisma/client and @prisma/extension-accelerate will both pin this
package to an agreed same specific version (eg. 5.10.0-dev.45). In turn this
will prevent @prisma/extension-accelerate from deviating from the API provided
by @prisma/client, and it will prevent @prisma/client from introducing
backwards incompatible changes to the internal AccelerateEngineConfig.
This is one safe-guard to catch breaking changes statically via TypeScript. That's in addition to running all our functional tests as usual.
What it contains
This package contains the AccelerateEngineConfig and AccelerateEngine types.
They are the contract that the Client and the Accelerate extension agree upon.
FAQs
This package is intended for Prisma's internal use
The npm package @prisma/accelerate-contract receives a total of 1,200 weekly downloads. As such, @prisma/accelerate-contract popularity was classified as popular.
We found that @prisma/accelerate-contract demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 2 open source maintainers collaborating on the project.
Package last updated on 16 Sep 2025
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
Security Community Slams MIT-linked Report Claiming AI Powers 80% of Ransomware
Experts push back on new claims about AI-driven ransomware, warning that hype and sponsored research are distorting how the threat is understood.
By Sarah Gooding -  Oct 30, 2025
Security News
Ruby Core Team Assumes Stewardship of RubyGems and Bundler, Former Maintainers Offer to Transfer All Rights to Matz
Ruby's creator Matz assumes control of RubyGems and Bundler repositories while former maintainers agree to step back and transfer all rights to end the dispute.
By Sarah Gooding -  Oct 29, 2025