Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
gitreview -- Summarize files changed in current topic branch
gitreview
is a wrapper around this git command:
$ git log --oneline --reverse --name-only master..HEAD
I use this command when considering whether to squash any commits before submitting
a pull request to merge the topic branch into master. Rather than remembering the whole
command, I defined this alias in my .gitconfig
:
[alias]
review = log --oneline --reverse --name-only master..HEAD
gitreview
produces listings like this:
64f00c8a title of first commit in topic branch
path/to/file/changed/a
e2d395b1 title of second commit in topic branch
path/to/file/changed/b
path/to/file/changed/c
23de746f title of second commit in topic branch
path/to/file/changed/b
path/to/file/changed/b
e2d395b1
23de746f
The gitreview
wrapper enhances the output of git review
in two ways:
path/to/file/changed/b
was changed.gitreview
assumes by default that your topic branch was created as a branch from master
. If you created the branch from some other branch or commitish you should specify that branch with the --branch
option.gitreview
explicitly requests git log
to abbreviate commit hashes to a specified length, defaulting to 8. This is done by using the --abbrev
option to git log
. Usage: gitreview [options]
Summarize files changed in current topic branch
Options:
-h, --help output usage information
-b, --branch [commitish] The commitish the topic branch was created from [master]
-a, --abbrev [digits] Abbreviate commit hashes to the number of digits [8])
FAQs
Review topic branch commits by files changed
We found that gitreview demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.