Security News
Research
Data Theft Repackaged: A Case Study in Malicious Wrapper Packages on npm
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
ava-codemods
Advanced tools
Translations: Français
Codemods for AVA that simplifies upgrading to newer versions and migrating to AVA
Codemods are small programs that help you automate changes to your codebase. Think of them as search and replace on steroids.
This module contains a set of codemods that enable you to upgrade your code between various AVA releases and migrate from existing test runners to AVA. It is maintained by the AVA team, and will be updated anytime we introduce breaking API changes.
$ npm install --global ava-codemods
This installs two binaries ava-codemods
and tape-to-ava
.
Currently we support migrating from tape to AVA.
$ tape-to-ava --help
Usage
$ tape-to-ava <path> [options]
path Files or directory to transform. Can be a glob like src/**.test.js
Options
--force, -f Bypass Git safety checks and forcibly run codemods
--dry, -d Dry run (no changes are made to files)
--parser The parser to use for parsing your source files (babel | babylon | flow) [babel]
To transform all test files in a directory run tape-to-ava mySrcFolder
in your terminal. Only files requiring or importing tape will be transformed. Notice the console output for errors, manual intervention might be required.
As we cannot statically determine if your sequential tape tests are able to run in parallel, all tests are transformed into test.serial
. To speed up the AVA test execution you can remove .serial
where applicable.
$ ava-codemods --help
Usage
$ ava-codemods [<file|glob> ...]
Options
--force, -f Bypass safety checks and forcibly run codemods
Available upgrades
- 0.16.x → 0.17.x
- 0.13.x → 0.14.x
Simply run ava-codemods
in your terminal and answer a few questions. You can pass a filename directly to the CLI. If you do not, you will be prompted for one.
Ensure you have a backup of your tests or commit the latest changes before running this.
t.error()
to t.ifError()
t.ok()
to t.truthy()
t.notOk()
to t.falsy()
t.same()
to t.deepEqual()
t.notSame()
to t.notDeepEqual()
MIT © James Talmage
FAQs
Codemods to simplify upgrading AVA versions
The npm package ava-codemods receives a total of 2 weekly downloads. As such, ava-codemods popularity was classified as not popular.
We found that ava-codemods demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 5 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Research
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
Research
Security News
Attackers used a malicious npm package typosquatting a popular ESLint plugin to steal sensitive data, execute commands, and exploit developer systems.
Security News
The Ultralytics' PyPI Package was compromised four times in one weekend through GitHub Actions cache poisoning and failure to rotate previously compromised API tokens.