stdin, os.exec, and shells are easy to interface and therefore exploit.
Having the ability to issue os.exec or interface stdin always makes the application dangerous.
Protecting against harmful bugs or malicious actors isn't difficult if the application's logic is handled correctly, and precautions are made to disable REPLs (but allowing SIGKILL, SIGSTOP, and other user-controlled signals).

A language's packaging utility (npx, pep, cargo, etc.) extends some amazing capabilities, but should never have the opportunity to be taken advantage of (Development Supply-Chain Attacks).

Ensure due diligence in writing cli applications, regardless of involvements with the following project(s).

Please note that the following section may not always reflect current cli-options.

Description	Global (`npx`)	System	Local
Banner + Conditional Setup	`npx lambda-factory`	`lambda-factory`	`npm run start`
Display Help Information	`npx lambda-factory --help`	`lambda-factory --help`	`npm run start -- --help`
Forcefully Prompt for System Setup	`npx lambda-factory setup`	`lambda-factory setup`	`npm run start -- setup`
Create a Jira Story	`npx lambda-factory create`	`lambda-factory create`	`npm run start -- create`

FAQs

What is aws-lambda-factory?

Is aws-lambda-factory popular?

Is aws-lambda-factory well maintained?

Package last updated on 02 May 2022

Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install