Security News
Another Round of TEA Protocol Spam Floods npm, But It’s Not a Worm
Recent coverage mislabels the latest TEA protocol spam as a worm. Here’s what’s actually happening.
By Philipp Burckhardt - Nov 14, 2025
api-smart-diff
Advanced tools
api-smart-diff
Generate the diff between two API specifications (OpenAPI, AsyncAPI, JsonSchema)
api-smart-diff
This package provides utils to compute the diff between two API specifications.
Purpose
- Generate API changelog
- Identify breaking changes
- Ensure API versioning consistency
Supported API specifications
- OpenApi 3.0
- AsyncApi 2.1
- JsonSchema
Swagger 2.0(Roadmap)graphql(Roadmap)gRPC(Roadmap)
Features
- Generate diff for supported specifications
- Generate merged spec with changes in metadata
- Classify all changes as breaking, non-breaking, annotation
- Supports custom classification rules
- Supports custom match rules for array items and object keys
- Resolves all $ref pointers, including external
- Typescript syntax support out of the box
- No dependencies, can be used in nodejs or browser
Installation
npm install api-smart-diff --save
Usage
Nodejs
import { apiDiff } from 'api-smart-diff'
const diff = apiDiff(oldSpec, newSpec, { rules: "OpenApi3" })
// {
// action: "add" | "remove" | "replace",
// after: 'value in newSpec',
// before: 'value in oldSpec',
// path: ['path, 'in', 'array', 'format'],
// type: "annotation" | "breaking" | "non-breaking" | "unclassified"
// }
const merge = apiMerge(oldSpec, newSpec, { rules: "OpenApi3" })
Browsers
A browser version of api-smart-diff is also available via CDN:
<script src="https://cdn.jsdelivr.net/npm/api-smart-diff@latest/browser/api-smart-diff.min.js"></script>
<script src="https://cdn.jsdelivr.net/npm/api-smart-diff@latest/browser/api-smart-diff.js"></script>
Reference api-smart-diff.min.js in your HTML and use the global variable ApiSmartDiff.
<script>
var diff = ApiSmartDiff.apiDiff(oldSpec, newSpec, { rules: "OpenApi3" })
var merge = ApiSmartDiff.apiMerge(oldSpec, newSpec, { rules: "OpenApi3" })
</script>
License
MIT
FAQs
Generate the diff between two API specifications (OpenAPI, AsyncAPI, GraphApi, JsonSchema)
The npm package api-smart-diff receives a total of 2,273 weekly downloads. As such, api-smart-diff popularity was classified as popular.
We found that api-smart-diff demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 04 Apr 2022
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
PyPI Expands Trusted Publishing to GitLab Self-Managed as Adoption Passes 25 Percent
PyPI adds Trusted Publishing support for GitLab Self-Managed as adoption reaches 25% of uploads
By Sarah Gooding - Nov 14, 2025
Research
/Security News
Malicious Chrome Extension Exfiltrates Seed Phrases, Enabling Wallet Takeover
A malicious Chrome extension posing as an Ethereum wallet steals seed phrases by encoding them into Sui transactions, enabling full wallet takeover.
By Kirill Boychenko - Nov 12, 2025