Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
incremental-coverage
Advanced tools
![](https://img.shields.io/github/license/matmanjs/incremental-coverage) ![](https://img.shields.io/github/languages/code-size/matmanjs/incremental-coverage)
本应用结合 lcov.info
与 Git Diff
得到仓库的增量覆盖率数据。
Incremental Coverage 适用于 macOS、Windows 和 Linux。
如果 Incremental Coverage 不能正常工作,请提交 issue。
$ npm install -g incremental-coverage
# or
$ yarn add global incremental-coverage
我们通过一个简单的命令行工具来展示如何使用(必须在 Git 仓库根目录中运行,且指定 lcov 文件)。
$ incremental-coverage -p="./.dwt_output/e2e/coverage/lcov.info" -t="2020-06-01"
./.dwt_output/e2e/coverage/lcov.info
覆盖率文件2020-06-01
增量起始时间output.json
文件,文件示例如下:{
"total": { "increLine": 2, "covLine": 2, "increRate": "100.00%" },
"files": [
{
"increLine": 2,
"covLine": 2,
"increRate": "100.00%",
"detail": [
{ "number": 5, "hits": 73 },
{ "number": 71, "hits": 45 }
],
"name": "/src/datas/action.js"
}
]
}
total
为增量覆盖率的总情况,files
中是各个文件的详细情况。
提供
命令行
与Node.js
调用两种形式
Incremental Coverage 使用 MIT 开源协议。
FAQs
Merge lcov.info and get incremental coverage and full coverage
The npm package incremental-coverage receives a total of 92 weekly downloads. As such, incremental-coverage popularity was classified as not popular.
We found that incremental-coverage demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.