Gathering detailed insights and metrics for node-pg-migrate-exp
Gathering detailed insights and metrics for node-pg-migrate-exp
Node.js database migration management for PostgreSQL
Installations
npm install node-pg-migrate-expDeveloper Guide
BETA
Typescript
Yes
Module System
CommonJS, ESM
Min. Node Version
>=18.19.0
Node Version
21.6.2
NPM Version
10.8.1
Releases
42
Languages
2
TypeScript
JavaScript
TypeScript (88.42%)
JavaScript (11.58%)
Developer
Download Statistics
Total Downloads
0
Last Day
0
Last Week
0
Last Month
0
Last Year
0
GitHub Statistics
MIT License
1,380 Stars
1,349 Commits
183 Forks
14 Watchers
11 Branches
81 Contributors
Updated on Jul 04, 2025
Maintainers
1
Package Meta Information
Latest Version
7.4.0-experimental-1189-13
Package Id
node-pg-migrate-exp@7.4.0-experimental-1189-13
Unpacked Size
516.66 kB
Size
90.66 kB
File Count
277
NPM Version
10.8.1
Node Version
21.6.2
Published on
Jun 20, 2024
Total Downloads
Cumulative downloads
Total Downloads
NaN
Last Day
0%
NaN
Compared to previous day
Last Week
0%
NaN
Compared to previous week
Last Month
0%
NaN
Compared to previous month
Last Year
0%
NaN
Compared to previous year
Weekly Downloads
Monthly Downloads
Yearly Downloads
Dependencies
1
Dev Dependencies
33
@eslint-types/prettier@eslint-types/typescript-eslint@eslint-types/unicorn@types/config@types/node@types/pg@types/yargs@typescript-eslint/eslint-plugin@typescript-eslint/parser@vitest/coverage-v8@vitest/uiconfigcross-envdotenvdotenv-expandeslinteslint-config-prettiereslint-define-configeslint-gitignoreeslint-plugin-prettiereslint-plugin-unicornjson5node-pg-migratenpm-run-all2pgprettierprettier-plugin-organize-importsrimrafts-nodetsuptypescriptvitepressvitest
node-pg-migrate
The core maintainer of this project moved to @Shinigami92 (also core maintainer of FakerJS and core member of Vite).
The project is and remains under the MIT license.
Node.js database migration management built exclusively for postgres. (But can also be used for other DBs conforming to SQL standard - e.g. CockroachDB.)
Started by Theo Ephraim, then handed over to Salsita Software and now maintained by @Shinigami92.
Preconditions
- Node.js 18 or higher
- PostgreSQL 12.8 or higher (lower versions may work but are not supported officially)
If you don't already have the pg library installed, you will need to add pg as either a direct or dev dependency
1npm add pg
Installation
1npm add --save-dev node-pg-migrate
Installing this module adds a runnable file into your node_modules/.bin directory. If installed globally (with the -g option), you can run node-pg-migrate and if not, you can run ./node_modules/.bin/node-pg-migrate.js
Quick Example
Add "migrate": "node-pg-migrate" to scripts section of your package.json so you are able to quickly run commands.
Run npm run migrate create my-first-migration. It will create file xxx_my-first-migration.js in migrations folder.
Open it and change contents to:
1exports.up = (pgm) => {
2 pgm.createTable('users', {
3 id: 'id',
4 name: { type: 'varchar(1000)', notNull: true },
5 createdAt: {
6 type: 'timestamp',
7 notNull: true,
8 default: pgm.func('current_timestamp'),
9 },
10 });
11 pgm.createTable('posts', {
12 id: 'id',
13 userId: {
14 type: 'integer',
15 notNull: true,
16 references: '"users"',
17 onDelete: 'cascade',
18 },
19 body: { type: 'text', notNull: true },
20 createdAt: {
21 type: 'timestamp',
22 notNull: true,
23 default: pgm.func('current_timestamp'),
24 },
25 });
26 pgm.createIndex('posts', 'userId');
27};Save migration file.
Now you should put your DB connection string to DATABASE_URL environment variable and run npm run migrate up.
(e.g. DATABASE_URL=postgres://test:test@localhost:5432/test npm run migrate up)
You should now have two tables in your DB :tada:
If you want to change your schema later, you can e.g. add lead paragraph to posts:
Run npm run migrate create posts_lead, edit xxx_posts_lead.js:
1exports.up = (pgm) => {
2 pgm.addColumns('posts', {
3 lead: { type: 'text', notNull: true },
4 });
5};Run npm run migrate up and there will be a new column in posts table :tada:
Want to know more? Read docs:
Docs
Full docs are available at https://salsita.github.io/node-pg-migrate
Explanation & Goals
Why only Postgres? - By writing this migration tool specifically for postgres instead of accommodating many databases, we can actually provide a full featured tool that is much simpler to use and maintain. I was tired of using crippled database tools just in case one day we switch our database.
Async / Sync - Everything is async in node, and that's great, but a migration tool should really just be a fancy wrapper that generates SQL. Most other migration tools force you to bring in control flow libraries or wrap everything in callbacks as soon as you want to do more than a single operation in a migration. Plus by building up a stack of operations, we can automatically infer down migrations (sometimes) to save even more time.
Naming / Raw Sql - Many tools force you to use their constants to do things like specify data types. Again, this tool should be a fancy wrapper that generates SQL, so whenever possible, it should just pass through user values directly to the SQL. The hard part is remembering the syntax of the specific operation, not remembering how to type "timestamp"!
License
No vulnerabilities found.
Reason
30 commit(s) and 9 issue activity found in the last 90 days -- score normalized to 10
Reason
no dangerous workflow patterns detected
Reason
no binaries found in the repo
Reason
all dependencies are pinned
Details
- Info: 56 out of 56 GitHub-owned GitHubAction dependencies pinned
- Info: 26 out of 26 third-party GitHubAction dependencies pinned
Reason
license file detected
Details
- Info: project has a license file: LICENSE:0
- Info: FSF or OSI recognized license: MIT License: LICENSE:0
Reason
1 existing vulnerabilities detected
Details
- Warn: Project is vulnerable to: GHSA-67mh-4wv8-2f99
Reason
Found 6/13 approved changesets -- score normalized to 4
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
security policy file not detected
Details
- Warn: no security policy file detected
- Warn: no security file to analyze
- Warn: no security file to analyze
- Warn: no security file to analyze
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Warn: jobLevel 'statuses' permission set to 'write': .github/workflows/semantic-pull-request.yml:17
- Info: jobLevel 'pull-requests' permission set to 'read': .github/workflows/semantic-pull-request.yml:16
- Info: topLevel 'contents' permission set to 'read': .github/workflows/ci.yml:11
- Info: topLevel 'contents' permission set to 'read': .github/workflows/cockroach-test.yml:11
- Warn: no topLevel permission defined: .github/workflows/coverage-report.yml:1
- Info: topLevel 'contents' permission set to 'read': .github/workflows/coverage.yml:9
- Info: topLevel 'contents' permission set to 'read': .github/workflows/docs.yml:14
- Info: topLevel 'contents' permission set to 'read': .github/workflows/postgres-test.yml:11
- Warn: no topLevel permission defined: .github/workflows/publish.yml:1
- Info: found token with 'none' permissions: .github/workflows/semantic-pull-request.yml:1
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
SAST tool is not run on all commits -- score normalized to 0
Details
- Warn: 0 commits out of 30 are checked with a SAST tool
Score
5.8
/10
Last Scanned on 2025-06-30
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More