bulk-api-adapter

Bulk Transfers API and notifications.

API Definition

Swagger API location

Auditing Dependencies

We use audit-ci along with npm audit to check dependencies for node vulnerabilities, and keep track of resolved dependencies with an audit-ci.jsonc file.

To start a new resolution process, run:

npm run audit:fix

You can then check to see if the CI will pass based on the current dependencies with:

npm run audit:check

The audit-ci.jsonc contains any audit-exceptions that cannot be fixed to ensure that CircleCI will build correctly.

Container Scans

As part of our CI/CD process, we use anchore-cli to scan our built docker container for vulnerabilities upon release.

If you find your release builds are failing, refer to the container scanning in our shared Mojaloop CI config repo. There is a good chance you simply need to update the mojaloop-policy-generator.js file and re-run the circleci workflow.

For more information on anchore and anchore-cli, refer to:

Name		Name	Last commit message	Last commit date
Latest commit History 145 Commits
.circleci		.circleci
config		config
docker		docker
src		src
test		test
.dockerignore		.dockerignore
.editorconfig		.editorconfig
.env		.env
.gitattributes		.gitattributes
.gitignore		.gitignore
.istanbul.yml		.istanbul.yml
.ncurc.yaml		.ncurc.yaml
.nvmrc		.nvmrc
.versionrc		.versionrc
API.md		API.md
CHANGELOG.md		CHANGELOG.md
CODEOWNERS		CODEOWNERS
Dockerfile		Dockerfile
LICENSE.md		LICENSE.md
README.md		README.md
audit-ci.jsonc		audit-ci.jsonc
docker-compose.yml		docker-compose.yml
jsdoc.json		jsdoc.json
package-lock.json		package-lock.json
package.json		package.json
sonar-project.properties		sonar-project.properties
test-integration.Dockerfile		test-integration.Dockerfile
test.Dockerfile		test.Dockerfile

License

mojaloop/bulk-api-adapter

Folders and files

Latest commit

History

Repository files navigation

bulk-api-adapter

API Definition

Auditing Dependencies

Container Scans

About

Topics

Resources

License

Stars

Watchers

Forks

Languages