Interopability with Verdaccio #10
Comments
|
Hello my friend :) I've been checking your latest features, I've see noticable changes since Israel that's great, once thing I have noticed but before I didn't know (or maybe didn't exist ) you don't need the lock file anymore, just like
I would like your point of view, how would you imagine this happen? |
|
Hello @juanpicado 👋 I didn't make as much progress as I would have liked 😞 (but I invested my time on new contributors so it will pay off 😊).
The content of import * as scanner from "@nodesecure/scanner";
const payload = await scanner.from("verdaccio");
console.log(payload); // <- what we inject/use in the Web UIMy idea was to manage to separate our Web UI from the CLI to use it independently (it would be possible knowing that globally it is Vanilla.js). And I thought that it would be potentially injectable in Verdaccio (like a plugin or something like that?). Overall it would be:
What do you think? |
On the occasion of Tel Aviv (NodeTLV) I had the opportunity to meet the maintainer of the Verdaccio project.
We discussed around a lot of ideas and common interest for our tools.
Being able to use the NodeSecure interface within verdaccio could be quite nice for example. But I think it does not stop there, there are probably even requirements on the API side where verdaccio packages could exploit some of our API like vulnera.
Research on Verdaccio packages may be needed to better understand their needs. The idea here is to improve NodeSecure to allow a better use by third party tools and developers.
The text was updated successfully, but these errors were encountered: