Security News
Crates.io Implements Trusted Publishing Support
Crates.io adds Trusted Publishing support, enabling secure GitHub Actions-based crate releases without long-lived API tokens.
By Sarah Gooding - Jul 16, 2025
You're Invited:Meet the Socket Team at BlackHat and DEF CON in Las Vegas, Aug 4-6.RSVP →
graphile
Graphile makes a number of open source projects, some of the headline projects include PostGraphile, Graphile Worker, Graphile Migrate and Grafast, but there are many others. This module is intended to be a CLI that will help when interacting with these various projects, helping you to create, debug, update, interact with and maintain them.
At the moment, it doesn't contain much, but it should grow over time.
Sponsors-only, source available
TL;DR: 30 day free trial, then become a sponsor to continue using.
Unlike the vast majority of our other packages, this package is not open source software. Instead it is licensed software, only to be used by sponsors.
At Graphile, we can only work on open source as much as we do thanks to the support of our sponsors. Sadly, many corporations decline to fund the open source software that underpins the success of their businesses. This lack of funding can lead to maintainer burnout and ultimately the discontinuation of projects, leaving these short-sighted companies to spend large amounts on maintenance, security, and/or rewrites.
Mandatory XKCD #2347 - Dependency.
Fortunately smart engineers tend to recognize that OSS projects need financial support to both be sustainable and to keep advancing. This sponsors-only package serves two purposes. First and foremost, it is a thank you to our sponsors who have helped us to get this far. Secondly, it acts as a carrot that forward-thinking engineers can use to convince their corporations sponsorship is necessary.
We hope that once a company is sponsoring one project, sponsoring others should be much easier; as such, this project is only licensed for sponsors - we do not sell licenses to it separately.
We offer non-sponsors a 30 day trial of this software, after that you must become a sponsor to keep using it. We recommend a sponsorship of at least $25/mo per engineer, however you may sponsor us at any amount that the platforms allow. One-time sponsorships are equivalent to 30 calendar days of sponsorship.
graphile config print
Prints out the configuration from your graphile.config.mjs (or similar) file
in an easy to read/digest form.
graphile config options
Indicates the full list of options that you may specify in your config file.
FAQs
Swiss army knife for dealing with all things Graphile
The npm package graphile receives a total of 257 weekly downloads. As such, graphile popularity was classified as not popular.
We found that graphile demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 12 Jul 2025
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
/Security News
Tracking Protestware Spread: 28 npm Packages Affected by Payload Targeting Russian-Language Users
Undocumented protestware found in 28 npm packages disrupts UI for Russian-language users visiting Russian and Belarusian domains.
By Olivia Brown - Jul 15, 2025
Research
/Security News
Contagious Interview Campaign Escalates With 67 Malicious npm Packages and New Malware Loader
North Korean threat actors deploy 67 malicious npm packages using the newly discovered XORIndex malware loader.
By Kirill Boychenko - Jul 14, 2025