npmpackage.info

@bufferapp/datadog-ci

Use Datadog from your CI.

0.13.4

135

Apache-2.0

TypeScript

16.20 kB

614 4.3

Installations

npm install @bufferapp/datadog-ci

Developer Guide

BETA

Typescript

No

Module System

CommonJS

Min. Node Version

>=10.24.1

Node Version

14.16.1

NPM Version

6.14.12 Score

Supply Chain

86.9

Quality

76.4

Maintenance

Vulnerability

80.7

License

Pull Requests

Open

13

Total

1,397

Closed

100

Merged

1,284

Issues

Open

69

Total

189

Closed

120

Releases

210

v3.1.0

Updated on Mar 10, 2025

v3.0.2

Updated on Mar 05, 2025

v3.0.1

Updated on Feb 26, 2025

v3.0.0

Updated on Feb 26, 2025

v2.48.0

Updated on Jan 20, 2025

v2.47.0

Updated on Jan 08, 2025

View All 210 releases

Contributors

370

View All 370 Contributors

Languages

TypeScript

JavaScript

Shell

Dockerfile

TypeScript (99.02%)

JavaScript (0.96%)

Shell (0.01%)

Dockerfile (0.01%)

validate.email 🚀

Verify real, reachable, and deliverable emails with instant MX records, SMTP checks, and disposable email detection.

Developer

DataDog

Download Statistics

Total Downloads

614

Last Day

Last Week

Last Month

Last Year

102

GitHub Statistics

Apache-2.0 License

135 Stars

4,129 Commits

59 Forks

548 Watchers

101 Branches

370 Contributors

Updated on Mar 12, 2025

Bundle Size

48.83 kB

Minified

16.20 kB

Minified + Gzipped

Bundlephobia

Maintainers

Package Meta Information

Latest Version

0.13.4

Package Id

@bufferapp/datadog-ci@0.13.4

Unpacked Size

388.22 kB

Size

69.12 kB

File Count

NPM Version

6.14.12

Node Version

14.16.1

Total Downloads

Cumulative downloads

Total Downloads

614

Last Day

Compared to previous day

Last Week

Compared to previous week

Last Month

-66.7%

Compared to previous month

Last Year

-39.6%

102

Compared to previous year

Daily Downloads

Weekly Downloads

Monthly Downloads

Yearly Downloads

Datadog CI

Execute commands with Datadog from within your Continuous Integration/Continuous Deployment scripts. A good way to perform end to end tests of your application before applying you changes or deploying. It currently features running synthetics tests and waiting for the results.

How to install the CLI

The package is under @datadog/datadog-ci and can be installed through NPM or Yarn:

1# NPM
2npm install --save-dev @datadog/datadog-ci
3
4# Yarn
5yarn add --dev @datadog/datadog-ci

Usage

1Usage: datadog-ci <command> <subcommand> [options]
2
3Available command:
4  - dependencies
5  - lambda
6  - sourcemaps
7  - synthetics

Each command allows interacting with a product of the Datadog platform. The commands are defined in the src/commands folder.

Further documentation for each command can be found in its folder, ie:

Contributing

Pull requests for bug fixes are welcome, but before submitting new features or changes to current functionality open an issue and discuss your ideas or propose the changes you wish to make. After a resolution is reached a PR can be submitted for review.

Running command in development environment

When developing the tool it is possible to run commands using yarn launch. It relies on ts-node so does not need building the project for every new change.

1yarn launch synthetics run-tests --config dev/global.config.json

Framework and libraries used

This tool uses clipanion to handle the different commands.

The tests are written using jest.

The coding style is checked with tslint and the configuration can be found in the tslint.json file.

Repository structure

Commands are stored in the src/commands folder.

The skeleton of a command is composed of a README, an index.ts and a folder for the tests.

1src/
2└── commands/
3    └── fakeCommand/
4         ├── __tests__/
5         │   └── index.test.ts
6         ├── README.md
7         └── index.ts

Documentation of the command must be placed in the README.md file, the current README must be updated to link to the new command README.

The index.ts file must export classes extending the Command class of clipanion. The commands of all src/commands/*/index.ts files will then be imported and made available in the datadog-ci tool.

A sample index.ts file for a new command would be:

1import {Command} from 'clipanion'
2
3export class HelloWorldCommand extends Command {
4  public async execute() {
5    this.context.stdout.write('Hello world!')
6  }
7}
8
9module.exports = [HelloWorldCommand]

Lastly, test files must be created in the __tests__/ folder. jest is used to run the tests and a CI has been set using Github Actions to ensure all tests are passing when merging a Pull Request.

The tests can then be launched through the yarn test command, it will find all files with a filename ending in .test.ts in the repo and execute them.

Continuous Integration tests

The CI performs tests to avoid regressions by building the project, running unit tests and running one end-to-end test.

The end-to-end test installs the package in a new project, configures it (using files in the .github/workflows/e2e folder) and runs a synthetics run-tests command in a Datadog Org (Synthetics E2E Testing Org) to verify the command is able to perform a test.

The synthetics tests ran are a browser test (id neg-qw9-eut) and an API test (id v5u-56k-hgk), both loading a page which outputs the headers of the request and verifying the X-Fake-Header header is present. This header is configured as an override in the .github/workflows/e2e/test.synthetics.json file. The API and Application keys used by the command are stored in Github Secrets named datadog_api_key and datadog_app_key.

The goal of this test is to verify the command is able to run tests and wait for their results as expected as well as handling configuration overrides.

Workflow

1# Compile and watch
2yarn watch
3
4# Run the tests
5yarn jest
6
7# Build code
8yarn build
9
10# Format code
11yarn format
12
13# Make bin executable
14yarn prepack

Release Process

Releasing a new version of datadog-ci unfolds as follow:

create a new branch for the version upgrade
update the version using yarn version [--patch|--minor|--major] depending on the nature of the changes introduced. You may refer to Semantic Versioning to determine which to increment.
push the branch along with the tag to the upstream (Github), create a Pull Request with the changes introduced detailed in the description and get at least one approval. (sample Pull Request)
merge the Pull Request
create a Github Release from the Tags page with the description of changes introduced
Once the release has been created, a Github Action will publish the package

Pre-Release Process

If you need to create a pre-release or releasing in a different channel here's how it works:

create a new branch for the channel you want to release to (alpha, beta, ...).
create a PR for your feature branch with the channel branch as a base.
pick a version following this format version-channel, it can be 0.10.9-alpha or 1-beta...
merge the Pull Request
create a Github Release:
- target the channel branch
- pick a tag based on your version version-channel
- check the This is a pre-release checkbox
publish the release and an action will publish it on npm

License

Apache License, v2.0

No vulnerabilities found.

10

Dangerous-Workflow

Determines if the project's GitHub Action workflows avoid dangerous patterns.

10

Code-Review

Determines if the project requires human code review before pull requests (aka merge requests) are merged.

10

Maintained

Determines if the project is "actively maintained".

10

License

Determines if the project has defined a license.

8

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

5

Branch-Protection

Determines if the default and release branches are protected with GitHub's branch protection settings.

0

CII-Best-Practices

Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.

0

Token-Permissions

Determines if the project's workflows follow the principle of least privilege.

0

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

Reason

binaries present in source code

Details

Warn: binary detected: src/commands/dsyms/__tests__/fixtures/multiple-archs/DDTest.framework.dSYM/Contents/Resources/DWARF/DDTest:1
Warn: binary detected: src/commands/dsyms/__tests__/fixtures/single-arch/DDTest.framework.dSYM/Contents/Resources/DWARF/DDTest:1
Warn: binary detected: src/commands/elf-symbols/__tests__/fixtures/.debug/dyn_aarch64.debug:1
Warn: binary detected: src/commands/elf-symbols/__tests__/fixtures/dyn_aarch64:1
Warn: binary detected: src/commands/elf-symbols/__tests__/fixtures/dyn_aarch64_nobuildid:1
Warn: binary detected: src/commands/elf-symbols/__tests__/fixtures/dyn_x86_64:1
Warn: binary detected: src/commands/elf-symbols/__tests__/fixtures/exec_aarch64:1
Warn: binary detected: src/commands/elf-symbols/__tests__/fixtures/exec_arm_big:1
Warn: binary detected: src/commands/elf-symbols/__tests__/fixtures/exec_arm_little:1
Warn: binary detected: src/commands/elf-symbols/__tests__/fixtures/go_x86_64_both_gnu_and_go_build_id:1
Warn: binary detected: src/commands/elf-symbols/__tests__/fixtures/go_x86_64_only_go_build_id:1
Warn: binary detected: src/commands/elf-symbols/__tests__/fixtures/go_x86_64_only_go_build_id.debug:1
Warn: binary detected: src/commands/flutter-symbols/__tests__/fixtures/dart-symbols/app.android-arm.symbols:1
Warn: binary detected: src/commands/flutter-symbols/__tests__/fixtures/dart-symbols/app.android-arm64.symbols:1
Warn: binary detected: src/commands/flutter-symbols/__tests__/fixtures/dart-symbols/app.android-x64.symbols:1
Warn: binary detected: src/commands/flutter-symbols/__tests__/fixtures/dart-symbols/app.ios-arm64.symbols:1
Warn: binary detected: src/commands/unity-symbols/__tests__/fixtures/androidSymbols/arm64-v8a/libmain.so:1
Warn: binary detected: src/commands/unity-symbols/__tests__/fixtures/androidSymbols/arm64-v8a/libunity.so:1
Warn: binary detected: src/commands/unity-symbols/__tests__/fixtures/androidSymbols/armeabi-v7a/libmain.so:1
Warn: binary detected: src/commands/unity-symbols/__tests__/fixtures/androidSymbols/armeabi-v7a/libunity.so:1

0

Security-Policy

Determines if the project has published a security policy.

0

Fuzzing

Determines if the project uses fuzzing.

0

Signed-Releases

Determines if the project cryptographically signs release artifacts.

0

Pinned-Dependencies

Determines if the project has declared and pinned the dependencies of its build process.

Reason

dependency not pinned by hash detected -- score normalized to 0

Details

Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:51: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:55: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:136: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:138: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:222: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:224: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:243: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/ci.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:246: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:277: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:279: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:74: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:76: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:79: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:158: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:160: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:180: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:182: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:202: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:204: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:260: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/ci.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:263: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/ci.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/issue-labeler.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/issue-labeler.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-labeler.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/issue-labeler.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-labeler.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/issue-labeler.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/pr-required-labels.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/pr-required-labels.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-prerelease.yml:9: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/publish-prerelease.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-prerelease.yml:10: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/publish-prerelease.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-release.yml:237: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/publish-release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-release.yml:238: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/publish-release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-release.yml:261: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/publish-release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-release.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/publish-release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-release.yml:49: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/publish-release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-release.yml:51: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/publish-release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-release.yml:67: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/publish-release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-release.yml:87: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/publish-release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-release.yml:89: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/publish-release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-release.yml:107: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/publish-release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-release.yml:125: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/publish-release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-release.yml:127: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/publish-release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-release.yml:143: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/publish-release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-release.yml:163: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/publish-release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-release.yml:165: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/publish-release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-release.yml:181: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/publish-release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-release.yml:199: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/publish-release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-release.yml:201: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/publish-release.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-release.yml:217: update your workflow using https://app.stepsecurity.io/secureworkflow/DataDog/datadog-ci/publish-release.yml/master?enable=pin
Warn: containerImage not pinned by hash: container/Dockerfile:1: pin your Docker image by updating alpine to alpine@sha256:a8560b36e8b8210634f77d9f7f9efd7ffa463e380b75e2e74aff4511df3ef88c
Warn: npmCommand not pinned by hash: container/Dockerfile:7-8
Warn: npmCommand not pinned by hash: .github/workflows/ci.yml:164
Warn: npmCommand not pinned by hash: .github/workflows/publish-release.yml:93
Info: 0 out of 43 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 5 third-party GitHubAction dependencies pinned
Info: 0 out of 1 containerImage dependencies pinned
Info: 0 out of 3 npmCommand dependencies pinned

0

SAST

Determines if the project uses static code analysis.

Score

4.3

/10

Last Scanned on 2025-03-10

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.

Learn More

@bufferapp/datadog-ci

Installations

Developer Guide

No

CommonJS

>=10.24.1

14.16.1

6.14.12

Score

Pull Requests

13

1,397

100

1,284

Issues

69

189

120

Releases

Contributors

Languages

validate.email 🚀

Developer

Download Statistics

GitHub Statistics

Bundle Size

48.83 kB

16.20 kB

Maintainers

Package Meta Information

Total Downloads

614

Daily Downloads

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

Dev Dependencies

Datadog CI

How to install the CLI

Usage

Contributing

Running command in development environment

Framework and libraries used

Repository structure

Continuous Integration tests

Workflow

Release Process

Pre-Release Process

License

10

10

10

10

8

5

0

0

0

0

0

0

0

0

4.3

/10