Research
Security News
Malicious npm Package Targets Solana Developers and Hijacks Funds
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
@windmill-labs/openapi-codegen-cli
Advanced tools
mkdir [workspace_name]
cd [workspace_name]
wmill workspace add [workspace_name] [workspace_id] [remote]
wmill sync pull
Minimal example:
bunx @windmill-labs/openapi-codegen-cli --schemaUrl "urlOrLocalOpenApiSpecInJsonOrYaml" --outputDir "./" --resourceTypeName "resourceTypeNameForThisSpec" --authKind "bearer"
The schema url can be a local file or a remote url. It can be a json or yaml file.
The output directory is specified by the --outputDir
flag. The scripts will be generated in this directory.
The resource type will be generated with the necessary properties. The resource type name is specified by the --resourceTypeName
flag.
For no authentication, pass the --authKind none
. The resource type will be omitted if no extra resource type params or extra headers are specified.
For bearer authentication, pass the --authKind bearer
. It will define a token property on the resource type. You can change the name of the token property by passing the --tokenName "token"
flag.
For basic authentication, pass the --authKind basic
flag. By default, it will add "username" and "password" to the resource type. You can change the names of the properties in the resource type by passing the --usernameName "username"
and --passwordName "password"
flags.
For query authentication, pass the --authKind query
flag. By default, it will add a token property on the resource type and pass the token as a query parameter named "token". Setting tokenName will change the name of the token property as well as the name of the query parameter.
For header authentication, pass the --authKind header
flag and the --headerName "X-CUSTOM-HEADER"
flag. Like for bearer and query auth, it will add a token property to the resource type. You can change the name of the token property in the resource type by passing the --tokenName "token"
flag.
Instead of using the base url from the spec file, you can override it by passing the --baseUrl "https://api.example.com"
flag.
You can specify parameters of the path to be included in the resource type by adding the --extraResourceParams "extraParameter1,extraParameter2"
flag.
The generated script path will use the resource type properties instead of taking them as parameters.
This is useful when you have a path parameter (e.g. {subdomain}, {organisation_id}, etc...) that is common to all endpoints of the spec and you don't want to pass it as a parameter in each script.
You can also specify extra headers to be passed to each request by adding the --extraHeaders "header1:propertyName1,header2:propertyName2"
flag.
Those property names will be added to the resource type.
You can limit the CLI to only generate scripts for a subset of the spec tags by passing the --tags "tag1,tag2"
flag.
wmill sync push
.# assume we have a workspace called CodegenDemo with id codegendemo on the cloud
mkdir CodegenDemo
cd CodegenDemo
wmill workspace add CodegenDemo codegendemo https://app.windmill.dev
wmill sync pull
# generate the scripts from the github OpenAPI spec into the f/github folder
bunx @windmill-labs/openapi-codegen-cli \
--schemaUrl "https://raw.githubusercontent.com/github/rest-api-description/main/descriptions/api.github.com/api.github.com.json" \
--outputDir "./f/github" \
--resourceTypeName "github" \
--authKind "bearer"
# sync the scripts with the remote
wmill sync push
You can validate an OpenAPI spec by running the following command:
bunx @windmill-labs/openapi-codegen-cli validate "urlOrLocalOpenApiSpecInJsonOrYaml"
FAQs
CLI for generating Windmill scripts from OpenAPI specs
The npm package @windmill-labs/openapi-codegen-cli receives a total of 25 weekly downloads. As such, @windmill-labs/openapi-codegen-cli popularity was classified as not popular.
We found that @windmill-labs/openapi-codegen-cli demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
Security News
Research
Socket researchers have discovered malicious npm packages targeting crypto developers, stealing credentials and wallet data using spyware delivered through typosquats of popular cryptographic libraries.
Security News
Socket's package search now displays weekly downloads for npm packages, helping developers quickly assess popularity and make more informed decisions.