Research
2025 Report: Destructive Malware in Open Source Packages
Destructive malware is rising across open source registries, using delays and kill switches to wipe code, break builds, and disrupt CI/CD.
By Kush Pandya - Dec 24, 2025
@trigo/atrix-swagger
Advanced tools
atrix-swagger
About
atrix-swagger is a atrix microservice plugin to intigrate swagger.io service decription files into the atrix microservice framework
Compatibility
atrix-swagger < 2.0.0 works with atrix < 6.0.0
atrix-swagger >= 2.0.0 works with atrix >= 6.0.0
Features
- Create request & response valisation rules from swagger API spec file
- serve GET /swagger.json to deliver the service's API spec
Installation
# install atrix framework
npm install -S @trigo/atrix
# install atrix-swagger plugin
nom install -S @trigo/atrix-swagger
Usage & Configuration
service.yml
swagger: "2.0"
info:
description: |
Example swager API spec (taken from pet store example on swagger.io)
version: "1.0.0"
title: Test based on Swagger Pet Store
consumes:
- application/json
produces:
- application/json
basePath: /v2
schemes:
- http
/pets/{petId}:
get:
tags:
- pet
summary: Find pet by ID
description: Returns a pet when ID < 10. ID > 10 or nonintegers will simulate API error conditions
produces:
- application/json
parameters:
- in: path
name: petId
description: ID of pet that needs to be fetched
required: true
type: integer
format: int64
responses:
"404":
description: Pet not found
"200":
description: successful operation
schema:
$ref: "#/definitions/Pet"
"400":
description: Invalid ID supplied
post:
summary: Updates a pet in the store with form data
description: ""
operationId: updatePetWithForm
consumes:
- application/x-www-form-urlencoded
produces:
- application/json
- application/xml
parameters:
- in: path
name: petId
description: ID of pet that needs to be updated
required: true
type: string
- in: formData
name: name
description: Updated name of the pet
required: true
type: string
- in: formData
name: status
description: Updated status of the pet
required: true
type: string
responses:
"405":
description: Invalid input
security:
- petstore_auth:
- write_pets
- read_pets
delete:
tags:
- pet
summary: Deletes a pet
description: ""
operationId: deletePet
produces:
- application/json
- application/xml
parameters:
- in: header
name: api_key
description: ""
required: true
type: string
- in: path
name: petId
description: Pet id to delete
required: true
type: integer
format: int64
responses:
"400":
description: Invalid pet value
security:
- petstore_auth:
- write_pets
- read_pets
definitions:
Pet:
type: object
required:
- name
- photoUrls
properties:
id:
type: integer
format: int64
name:
type: string
example: doggie
photoUrls:
type: array
items:
type: string
status:
type: string
description: pet status in the store
handlers/pets/{petId}_GET.js
'use strict';
module.exports = (req, reply, service) => {
// params object is automatically validated acordiing to the swagger spec
if(req.params.petId) { ... }
// same applies to req.query, req.payload => validation automaticlly applied
// respoonse will be validated as defined in swager spec
reply(resulObj)
}
index.js
'use strict';
const atrix = require('@trigo/atrix');
const path = require('path');
const svc = atrix.addService({
// name of the service
name: 'swagger',
// declare swagger section
swagger: {
// let atrix-swagger know where the service API spec file is located
serviceDefinition: path.join(__dirname, './service.yml'),
},
// commont atrix service config
endpoints: {
http: {
port: 3000,
handlerDir: `${__dirname}/handler`,
},
},
});
svc.start();
To get complete parsed Swagger API spec from service as JSON simply use the /swager.json endpoint
curl http://localhost:3000/swagger.json
FAQs
Swagger API Language intigration
The npm package @trigo/atrix-swagger receives a total of 37 weekly downloads. As such, @trigo/atrix-swagger popularity was classified as not popular.
We found that @trigo/atrix-swagger demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 3 open source maintainers collaborating on the project.
Package last updated on 23 Mar 2021
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
Engineering with AI Podcast: The Promise of AI-First Development
Socket CTO Ahmad Nassri shares practical AI coding techniques, tools, and team workflows, plus what still feels noisy and why shipping remains human-led.
By Sarah Gooding - Dec 24, 2025
Research
/Security News
Spearphishing Campaign Abuses npm Registry to Target U.S. and Allied Manufacturing and Healthcare Organizations
A five-month operation turned 27 npm packages into durable hosting for browser-run lures that mimic document-sharing portals and Microsoft sign-in, targeting 25 organizations across manufacturing, industrial automation, plastics, and healthcare for credential theft.
By Nicholas Anderson, Kirill Boychenko - Dec 23, 2025