New Research: Supply Chain Attack on Axios Pulls Malicious Dependency from npm.Details →
Socket
Book a DemoSign in
Socket
Book a DemoSign in

taskcluster-vcs

Package Overview
Dependencies
Maintainers
9
Versions
123
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

taskcluster-vcs

Version control tools for taskcluster images

latest
Source
npmnpm
Version
2.3.44
Version published
Maintainers
9
Created
Source

TaskCluster VCS Tools (tc-vs)

Documentation Status

Build Status

Read the docs

Deploying new Docker images

# Edit `Dockerfile` and `src/cli/moz-cache.js` to update the version number.
docker build -t taskcluster/taskcluster-vcs:$VERSION .
docker login
docker push taskcluster/taskcluster-vcs:$VERSION

Deploying new versions on npm

Consider running npm update first and testing the result.

# Edit package.json to update the revision
npm shrinkwrap
npm login
npm publish

Don't forget to commit and push the changes.

Post-Deployment Verification

After publishing a new version to npm and deploying a new docker image with that version, the image and version can be tested by duplicating the tc-vcs TaskCluster hook and replacing the image version number with the newly created version. Run the task and ensure the tasks that it schedules complete successfully. At a minimum tasks for hg, git, and android repo clones should be tested.

FAQs

Package last updated on 05 Feb 2018

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

The Hidden Blast Radius of the Axios Compromise

Security News

The Hidden Blast Radius of the Axios Compromise

The Axios compromise shows how time-dependent dependency resolution makes exposure harder to detect and contain.

By Ahmad Nassri  -  Apr 01, 2026