Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
npm-script-selector
Advanced tools
The NPM Script Selector is a CLI tool for discovering and running project scripts within package.json files.
░█▀█░█▀█░█▄█░░░░░█▀▀░█▀▀░█▀▄░▀█▀░█▀█░▀█▀░░░░░█▀▀░█▀▀░█░░░█▀▀░█▀▀░▀█▀░█▀█░█▀▄
░█░█░█▀▀░█░█░▄▄▄░▀▀█░█░░░█▀▄░░█░░█▀▀░░█░░▄▄▄░▀▀█░█▀▀░█░░░█▀▀░█░░░░█░░█░█░█▀▄
░▀░▀░▀░░░▀░▀░░░░░▀▀▀░▀▀▀░▀░▀░▀▀▀░▀░░░░▀░░░░░░▀▀▀░▀▀▀░▀▀▀░▀▀▀░▀▀▀░░▀░░▀▀▀░▀░▀
By: Justin Sunday
GitHub: sundayj/npm-script-selector
Website: JLSunday.com
NPM: npm-script-selector
The NPM Script Selector is a CLI tool for discovering and running project scripts within package.json
files. Have you ever worked on a project that contains so many scripts that you can't always remember the available options? That's what happened to me. I currently contribute to a project with 30+ scripts. I became tired of having to open the package file and/or IDE in order to find and run the needed scripts, so I created this small CLI.
Currently, you provide the path to the package.json
file, the NPM Script Selector will then list the available scripts for you, where you can interactively select the one you want. It will then run the script for you within the selected project's directory. I plan to add more functionality in the near future.
Uses figlet
, commander
, and inquirer
.
If you like this package, please consider sponsoring:
For feature requests, or bugs, please create an issue here
package.json
as an input.package.json
.package.json
files within a directory.Install NPM Script Selector with npm:
npm i -g npm-script-selector
To run:
> npmss -f path/to/desired/package.json
For Help:
> npmss -h
Usage: npmss [options]
The NPM Script Selector is a CLI tool for discovering and running project scripts within package.json files.
Options:
-V, --version output the version number
-f, --file <value> Path to the package.json.
-b, --banner <value> Value for the title to be displayed to the user. (Replaces the NPM-Script-Selector banner.)
-hb, --hide-banner Use this flag if you'd like to not display a banner at all.
-bf, --banner-font <value> Pass the name of a font listed here to print the banner in the desired font. https://github.com/DefinitelyTyped/DefinitelyTyped/blob/53d91777b0daa1b5b6b0beac63ab0b25126b7b13/types/figlet/index.d.ts#L2
-h, --help display help for command
Path can be relative to current directory, or absolute.
Bug reports and pull requests are welcome on GitHub at sundayj/npm-script-selector. This project is intended to be a safe, welcoming space for collaboration, and contributors are expected to adhere to the Contributor Covenant code of conduct.
The package is available as open source under the terms of the MIT License.
FAQs
The NPM Script Selector is a CLI tool for discovering and running project scripts within package.json files.
The npm package npm-script-selector receives a total of 36 weekly downloads. As such, npm-script-selector popularity was classified as not popular.
We found that npm-script-selector demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.