Security News
Supply Chain Attack Detected in Solana's web3.js Library
A supply chain attack has been detected in versions 1.95.6 and 1.95.7 of the popular @solana/web3.js library.
By Sarah Gooding - Dec 03, 2024
Huge News!Announcing our $40M Series B led by Abstract Ventures.Learn More →
jfrog-client-js
Advanced tools
jfrog-client-js
JFrog Javascript Client is a javascript library, which wraps some of the REST APIs exposed by JFrog Services's different services.
JFrog Javascript Client
JFrog Javascript Client is a Javascript library, which wraps some REST APIs exposed by JFrog's different services.
Getting started
Add jfrog-client-js as a dependency to your package.json file:
"dependencies": {
"jfrog-client-js": "^2.0.0"
}
APIs
Setting up JFrog client
let jfrogClient = new JfrogClient({
platformUrl: 'https://my-platform-url.jfrog.io/',
// artifactoryUrl - Set to use a custom Artifactory URL.
// xrayUrl - Set to use a custom Xray URL.
username: 'username',
password: 'password',
// OR
accessToken: 'accessToken',
proxy: {host: '<organization>-xray.jfrog.io', port: 8081, protocol: 'https'},
headers: {'key1': 'value1', 'key2': 'value2'}
});
Xray
Pinging Xray
jfrogClient.xray().system().ping()
.then(result => {
console.log(result);
})
.catch(error => {
console.error(error);
});
Getting Xray version
jfrogClient.xray().system().version()
.then(result => {
console.log(result);
})
.catch(error => {
console.error(error);
});
Scanning bulk of dependencies
let express = new ComponentDetails('npm://express:4.0.0');
let request = new ComponentDetails('npm://request:2.0.0');
jfrogClient.xray().summary().component({
component_details: [express, request]
})
.then(result => {
console.log(JSON.stringify(result));
})
.catch(error => {
console.error(error);
});
Scanning a dependency tree with consideration to the JFrog project
jfrogClient.xray().scan().graph({
component_id: 'root-node',
nodes: [{component_id: 'npm://express:4.0.0'}, {component_id: 'npm://request:2.0.0'}]
}, () => { /* if (something) throw Error('Aborted')*/ }, 'projectKey')
.then(result => {
console.log(JSON.stringify(result));
})
.catch(error => {
console.error(error);
});
Retrieving Xray Build Details
jfrogClient.xray().details().build('Build Name', '1', 'Optional Project Key')
.then(result => {
console.log(JSON.stringify(result));
})
.catch(error => {
console.error(error);
});
Artifactory
Pinging Artifactory
jfrogClient.artifactory().system().ping()
.then(result => {
console.log(result);
})
.catch(error => {
console.error(error);
});
Getting Artifactory version
jfrogClient.artifactory().system().version()
.then(result => {
console.log(result);
})
.catch(error => {
console.error(error);
});
Downloading an artifact
jfrogClient.artifactory().download().downloadArtifact('path/to/artifact')
.then(result => {
console.log(JSON.stringify(result));
})
.catch(error => {
console.error(error);
});
Searching by AQL
jfrogClient.artifactory()
.search()
.aqlSearch(
'items.find({' +
'"repo":"my-repo-name",' +
'"path":{"$match":"*"}}' +
').include("name","repo","path","created").sort({"$desc":["created"]}).limit(10)'
);
.then(result => {
console.log(JSON.stringify(result));
})
.catch(error => {
console.error(error);
});
Building and testing the sources
To build the plugin sources, please follow these steps:
-
Clone the code from git.
-
Install and pack the jfrog-client-js dependency locally, by running the following npm commands:
npm i && npm pack
If you'd like run the jfrog-client-js integration tests, follow these steps:
- Make sure your JFrog platform is up and running.
- Set the CLIENTTESTS_PLATFORM_URL environment variable with your JFrog platform URL.
- Set the CLIENTTESTS_PLATFORM_ACCESS_TOKEN OR CLIENTTESTS_PLATFORM_USERNAME and CLIENTTESTS_PLATFORM_PASSWORD environment variables with your JFrog platform credentials.
- Run the following command:
npm t
Important: The tests use port 9090 to set up an HTTP proxy server. If this port is already used on the machines which runs the tests, please replace it in the tests code with a different port.
Pull requests
We welcome pull requests from the community.
Guidelines
- If the existing tests do not already cover your changes, please add tests.
- Pull requests should be created on the master branch.
- Please run
npm run formatfor formatting the code before submitting the pull request.
FAQs
JFrog Javascript Client is a javascript library, which wraps some of the REST APIs exposed by JFrog Services's different services.
The npm package jfrog-client-js receives a total of 922 weekly downloads. As such, jfrog-client-js popularity was classified as not popular.
We found that jfrog-client-js demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Package last updated on 30 Dec 2021
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
Security News
Malicious npm Package Targets Solana Developers and Hijacks Funds
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
By Socket Research Team - Dec 02, 2024
Security News
Research
Typosquatting Cryptographic Libraries: Malicious npm Packages Threaten Crypto Developers with Keylogging and Wallet Theft
Socket researchers have discovered malicious npm packages targeting crypto developers, stealing credentials and wallet data using spyware delivered through typosquats of popular cryptographic libraries.
By Kirill Boychenko - Nov 27, 2024