Research
Security News
Malicious npm Package Targets Solana Developers and Hijacks Funds
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
By Socket Research Team - Dec 02, 2024
Huge News!Announcing our $40M Series B led by Abstract Ventures.Learn More →
boostbuild
Boost is a simple build system that aims to create an interface for shell command substitution across different operative systems.
- 0.1.13
- PyPI
Sorry we don't scan binary artifacts yet
- Maintainers
- 1
Boost
Boost is a simple build system that aims to create an interface for shell command substitution across different operative systems. Boost tries to centralize build steps on different development environments.
Boost adds a simple way to add custom commands with different behaviours for different platforms.
Commands
A command is a group of functions which determines the behaviour of an action on different environments. A command needs to implement these functions:
generic_exec(args: List[str]) -> dict: function if the code is the same across multiple platforms orwin_exec(args: List[str]) -> dict: for Windows commands.posix_exec(args: List[str]) -> dict: for Posix commands.
Currently, commands files under cmd package which implement above deffined functions can be automatically used by its file name. For example, boost.cmd.delete can be used inside any boost.yaml boost targets by using the keyword delete.
Using Boost
To use Boost, first, create a boost.yaml file in your project directory. This is an example of a simple boost file.
vars:
file: example.txt
current_dir: exec pwd
boost:
dev: |
delete {file}
asd {current_dir}
vars: Define key-value pairs representing variables that needs to be used inside boost targets. If a variable needs to store the output from a command, useexecfollowed by the commands that needs to be captured.boost: Define key-value pairs named boost targets. Target key will be used to call that specific target. Value contains a list of commands separated by\nthat will be triggered when calling a specific target. If a value needs to use a variable, use$followed by the variable name that was previously declared onvarssection.
To call a boost target, run boost <TARGET>. If no boost target was specified, boost will use the first defined target.
Developing boost
Requirements:
- poetry
Run poetry install. Whit the previous command, you can run poetry run boost to test boost, boost command does automatically trigger boostbuild.main:main function.
FAQs
Boost is a simple build system that aims to create an interface for shell command substitution across different operative systems.
We found that boostbuild demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
Research
Typosquatting Cryptographic Libraries: Malicious npm Packages Threaten Crypto Developers with Keylogging and Wallet Theft
Socket researchers have discovered malicious npm packages targeting crypto developers, stealing credentials and wallet data using spyware delivered through typosquats of popular cryptographic libraries.
By Kirill Boychenko - Nov 27, 2024
Security News
Weekly Downloads Now Available in npm Package Search Results
Socket's package search now displays weekly downloads for npm packages, helping developers quickly assess popularity and make more informed decisions.
By Sarah Gooding - Nov 26, 2024