Security News
Maven Central Adds Sigstore Signature Validation
Maven Central now validates Sigstore signatures, making it easier for developers to verify the provenance of Java packages.
By Sarah Gooding - Feb 06, 2025
New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More →
deployment-notifier
Advanced tools
Deployment Notifier
Lets you know when you should deploy and when the deployment is complete.
Useful when:
- You need a human to make a decision of which version to deploy (if you want to do that when committing, look at semantic-release or similar).
- You're using Slack
- You have another webhook that also needs to record deployment
Environment variables
All environment variables are required.
Define to notify Slack
NODE_DEPLOYMENT_NOTIFIER_SLACK_WEBHOOK_URL: URL to the Slack webhookNODE_DEPLOYMENT_NOTIFIER_SLACK_CHANNEL: Slack channel name to post messages to, e.g.#deploymentsNODE_DEPLOYMENT_NOTIFIER_SLACK_USERNAME: Username to use when posting, e.g.Row Bot
Define for generic webhook
NODE_DEPLOYMENT_NOTIFIER_WEBHOOK_URL: URL to use when posting webhook with deployment infoNODE_DEPLOYMENT_NOTIFIER_WEBHOOK_BASIC_AUTH_USERNAME: Basic auth username for webhookNODE_DEPLOYMENT_NOTIFIER_WEBHOOK_BASIC_AUTH_PASSWORD: Basic auth password for webhook
Usage
Install module globally:
npm install -g deployment-notifier
Suggest deployment
Sends Slack notification with a suggestion to make a deployment.
Includes changelog (since last deployment).
Usage
Usage: deployment-suggestion [options]
Options:
-h, --help output usage information
-N, --app-name <app name> Application name
-T, --latest-deployment-tag <git tag> Name of tag for latest deployment
-U, --deploy-url <url> URL where a deployment can be started
Example
$ deployment-suggestion --app-name "some app" --tag-name v1.0.0
Record deployment
Sends message after a deployment has completed, to both Slack webhook and HTTP webhook.
Includes changes in the new version.
Usage
Usage: deployment-completed [options]
Options:
-h, --help output usage information
-N, --app-name <app name> Application name
-M, --message <release notes> Release notes (required unless providing tags)
-P, --previous-deployment-tag <git tag> Name of tag for previous deployment
-T, --deployment-tag <git tag> Name of tag for latest deployment
-E, --environment <target environment> The environment deployment was targeted at
License
MIT
FAQs
Sends notifications about deployments for a Git repo
We found that deployment-notifier demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 13 Oct 2020
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
38% of CISOs Fear They’re Not Moving Fast Enough on AI
CISOs are racing to adopt AI for cybersecurity, but hurdles in budgets and governance may leave some falling behind in the fight against cyber threats.
By Sarah Gooding - Feb 04, 2025
Research
Security News
Go Supply Chain Attack: Malicious Package Exploits Go Module Proxy Caching for Persistence
Socket researchers uncovered a backdoored typosquat of BoltDB in the Go ecosystem, exploiting Go Module Proxy caching to persist undetected for years.
By Kirill Boychenko - Feb 04, 2025