You're Invited:Meet the Socket Team at BlackHat and DEF CON in Las Vegas, Aug 4-6.RSVP
Socket
Book a DemoInstallSign in
Socket
Book a DemoInstallSign in

git-inbox

Package Overview
Dependencies
Maintainers
1
Versions
1
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

git-inbox

git-inbox: Slack bot to convert uploads into Git commits/PRs

0.0.0
latest
Source
npmnpm
Version published
Weekly downloads
0
-100%
Maintainers
1
Weekly downloads
 
Created
Source

git-inbox

Slack bot to convert uploads into Git commits/PRs. Also, since Excel is so popular, transform XLSX into YAML for techies.

Setup

Deploy this repo to Heroku or any other Node.js host.

Set up environment vars (config vars in Heroku):

  • TARGET_GIT_URL: Git repo URL for commit access
    • format: https://<user>:<personal-token>@github.com/<user>/<repo>.git
    • create personal access token on the GitHub Personal access tokens page
    • if your repo is at https://github.com/alice/hello-world and the secret personal access token is abcd1234, use: https://alice:abcd1234@github.com/alice/hello-world.git
  • SLACK_AUTH_TOKEN: Slack bot integration token
    • to get the token: configure a new bot on the Slack bot config page
    • the secret token will look something like: xyz-12345678-ABCDabcd12345678

Add the description file to your repo root: .git-inbox.yml:

# file upload and conversion configuration
files:
  # simple file upload examples
  - hello/acme.txt # any file upload named "acme.txt" saved into "hello/acme.txt"

  - in: *foobar*.txt # any text file upload containing "foobar" in the name
    out: beep.txt # saved in "beep.txt"

  # Excel to YAML conversion examples
  - data/boop.yml # any Excel file upload starting with "boop" converted to YAML and saved into "data/boop.yml"

  - in: hi.xlsx # any Excel file named "hi.xlsx"
    out:
      format: yaml # convert to YAML
      path: my/sub/folder/hithere.yaml # save into given repo path

# publish to repo using GitHub pull requests
push:
  type: github-request # open a GitHub pull request
  base: master # use "master" as base branch (default)

# alternative mode: direct commit to branch
# push:
#   type: branch # push to branch
#   branch: development # commit to "development" branch

Now, any time you upload something to the Slack channel where the bot lives, it will commit that file and create a pull request to the target repo! 🤖

To Do

  • Heroku button
  • text/raw uploads
  • CSV uploads
  • show diff (if small) in Slack channel as inline attachment
  • use Slack reaction to approve pull request
  • issue pull request to branch instead of direct push
  • allow multiple successive uploads to same PR
  • cleanup work directory after push
  • fix logging
  • customizable committer/author
  • declarative (target-first) file listener config

Development

npm install

cat <<EOF > env.sh
export TARGET_GIT_URL=https://<user>:<personal-token>@github.com/<user>/<repo>.git
export SLACK_AUTH_TOKEN=<auth-token>
EOF

# Slack tests
. env.sh
supervisor --extensions 'js,yml' slack.js

FAQs

Package last updated on 25 Mar 2016

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

AI + a16z Podcast: Vibe Coding, Security Risks, and the Path to Progress

Application Security

/

Security News

AI + a16z Podcast: Vibe Coding, Security Risks, and the Path to Progress

Socket CEO Feross Aboukhadijeh and a16z partner Joel de la Garza discuss vibe coding, AI-driven software development, and how the rise of LLMs, despite their risks, still points toward a more secure and innovative future.

By Sarah Gooding  -  Jul 25, 2025