Huge News!Announcing our $40M Series B led by Abstract Ventures.Learn More
Socket
Sign inDemoInstall
Socket

deprecator

Package Overview
Dependencies
Maintainers
1
Versions
37
Alerts
File Explorer

Advanced tools

Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

deprecator

Deprecate npm package versions based on rule matching.

  • 2.1.26
  • latest
  • Source
  • npm
  • Socket score

Version published
Maintainers
1
Created
Source

deprecator

CircleCI codecov Gitter

Deprecate npm package versions based on rule matching.

deprecator is a tool that allows you to deprecate one or more versions of a package published to an npm-compatible registry.

Versions of a package are selected for deprecation based on matching each version against one or more rules.

Table of Contents

Features

  • npm-compatible registry support.
    • Multiple version deprecation support.
    • Mono repositories.

Installation

To install the deprecator tool globally please run the following command:

yarn global add deprecator

If you are using the npm package manager you can run the following command:

npm install --global deprecator

Installing deprecator globally allows you to the tool to manage the deprecation of multiple packages, and in the future, allow you to use deprecator on non-npm packages.

Usage

Command Line Tool

Please make sure you have ownership over the package you plan on deprecating with deprecator, and that you have the appropriate credentials setup as described below.

Npm: You can log into an npm-compatible registry using the adduser command (Doing so will update your ~/.npmrc file.).

Next, call deprecator from within your project's top folder, passing a comma-separated list of rule names:

deprecator --rules=[RULE,...]

GitHub App

We do not own, or run, a GitHub App.

To deploy Deprecator as a GitHub application, please see our Deployment guide.

Available Rules

Whether a rule is available is dependent on which registry a package is published.

At this time we only support npm-compatible registries.

all

Deprecate all versions of a package.

deprecator --rules=all
majorVersionsBeforeSuccessor

Deprecate all versions of a major release line, such as all minor and patch releases for a major version, in which the earliest version released in the next major release line (the successor major version) has been out for a given number of months.

For example, to deprecate all versions of a major release line in which the earliest version released in the next major release line has been out for at least 6 months.

deprecator --rules=majorVersionsBeforeSuccessor=6

To manage minor releases for a major release line please use the minorVersionsBeforeSuccessor option documented below.

minorVersionsBeforeSuccessor

Deprecate all versions of a minor release line, such as all patch releases for a minor version, in which the earliest version released in the next minor release line (the successor minor version) has been out for a given number of months.

For example, to deprecate all versions of a minor release line in which the earliest version released in the next minor release line has been out for at least 6 months.

deprecator --rules=minorVersionsBeforeSuccessor=6

If a minor release line is the last minor for a particular major version, please use the majorVersionsBeforeSuccessor option to manage its deprecation.

patchVersions

Deprecate all patch releases for a major.minor release line except the latest patch in that release line, or the one pointed to by the latest dist-tag.

For example, if a project has released 1.0.0, 1.0.1, and 1.0.2, setting patchVersions will deprecate the first two releases.

deprecator --rules=patchVersions

Note: If, in the earlier example, your project's latest dist-tag pointed to 1.0.1, then only 1.0.0 would be deprecated. The other two releases would not be deprecated. Version 1.0.1 is not deprecated because it's pointed to by latest, and 1.0.2 is not deprecated because it's the latest patch in the 1.0 release line. A future feature will allow 1.0.2 to be deprecated.

Debugging

To assist users of deprecator with debugging the behavior of this module we use the debug utility package to print information about the release process to the console. To enable debug message printing, the environment variable DEBUG, which is the variable used by the debug package, must be set to a value configured by the package containing the debug messages to be printed.

To print debug messages on a unix system set the environment variable DEBUG with the name of this package prior to executing deprecator:

DEBUG=deprecator deprecator

On the Windows command line you may do:

set DEBUG=deprecator
deprecator

Node Support Policy

We only support Long-Term Support versions of Node.

We specifically limit our support to LTS versions of Node, not because this package won't work on other versions, but because we have a limited amount of time, and supporting LTS offers the greatest return on that investment.

It's possible this package will work correctly on newer versions of Node. It may even be possible to use this package on older versions of Node, though that's more unlikely as we'll make every effort to take advantage of features available in the oldest LTS version we support.

As each Node LTS version reaches its end-of-life we will remove that version from the node engines property of our package's package.json file. Removing a Node version is considered a breaking change and will entail the publishing of a new major version of this package. We will not accept any requests to support an end-of-life version of Node. Any merge requests or issues supporting an end-of-life version of Node will be closed.

We will accept code that allows this package to run on newer, non-LTS, versions of Node. Furthermore, we will attempt to ensure our own changes work on the latest version of Node. To help in that commitment, our continuous integration setup runs against all LTS versions of Node in addition the most recent Node release; called current.

JavaScript package managers should allow you to install this package with any version of Node, with, at most, a warning if your version of Node does not fall within the range specified by our node engines property. If you encounter issues installing this package, please report the issue to your package manager.

Contributing

Please read our contributing guide to see how you may contribute to this project.

Copyright 2018 FactSet Research Systems Inc

Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at

http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.

Keywords

FAQs

Package last updated on 30 Aug 2018

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

SocketSocket SOC 2 Logo

Product

  • Package Alerts
  • Integrations
  • Docs
  • Pricing
  • FAQ
  • Roadmap
  • Changelog

Packages

npm

Stay in touch

Get open source security insights delivered straight into your inbox.


  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc