Security News
Maven Central Adds Sigstore Signature Validation
Maven Central now validates Sigstore signatures, making it easier for developers to verify the provenance of Java packages.
Simple task runner for Node (depends on Node >=6.0.0)
Deckhand can be used from the command line or imported
Tasks are intended to be an array of strings that map to files.
Tasks to be run together are grouped in arrays
Tasks to be run in sequence are concatenated strings with !
divider
All tasks are run in their own child processes, unless specified otherwise
Tasks run in the parent process can either return a Promise or accept a callback to be called on completion
./node_modules/.bin/deckhand <tasks..>
Available CLI options can be seen by running:
./node_modules/.bin/deckhand -h
import Deckhand from 'deckhand';
new Deckhand([
['tasks/linters/css', 'tasks/linters/js', 'tasks/linters/html'],
['tasks/tests/unit', 'tasks/build!tasks/tests/integration']
], { cwd: __dirname, runner: 'babel-node' });
// This will run all linters together
// Then will run all tests together
// It will also make sure to complete the build task before running integration
// All tasks will be run in child processes using `babel-node`
A Deckhand constructor takes two arguments:
The following options are available (with their defaults):
FAQs
Task runner
We found that deckhand demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Maven Central now validates Sigstore signatures, making it easier for developers to verify the provenance of Java packages.
Security News
CISOs are racing to adopt AI for cybersecurity, but hurdles in budgets and governance may leave some falling behind in the fight against cyber threats.
Research
Security News
Socket researchers uncovered a backdoored typosquat of BoltDB in the Go ecosystem, exploiting Go Module Proxy caching to persist undetected for years.