Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
graphql-codegen-core
Advanced tools
graphql-codegen-core
This package is in charge of converting GraphQLSchema
and GraphQL client-side operations (query/mutation/subscription/fragment) into a template consumable JSON structure.
The entry points of this package are:
schemaToTemplateContext
- transforms GraphQLSchema
into SchemaTemplateContext
object.transformDocument
- transforms GraphQL DocumentNode
(object that can contains multiple GraphQL operations and fragments) to Document
.The purpose of the transformation is to simplify the links and connections between the GraphQL entities, and to add template indicators (has...
, is...
, uses...
) to the context.
The build process of this package is based on TypeScript and compiled with typescript
compiler.
To build this package, start by installing the package dependencies:
$ npm install
// Or, with Yarn
$ yarn
Then, you can use the existing NPM scripts to build the package:
$ npm run build
// Or, with Yarn
$ yarn build
FAQs
GraphQL types and code generator based on schema
The npm package graphql-codegen-core receives a total of 16,038 weekly downloads. As such, graphql-codegen-core popularity was classified as popular.
We found that graphql-codegen-core demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.