npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

jarvis-ci

v2.0.0

Published

This npm package is light weight CI/CD tool. the goal is to achieve simplicity and local machine CI/CD execution. it is configured through YAML for commands.

Downloads

777

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

engrmuqeetahmadengrmuqeetahmad

Keywords

devopsci/cdautomation

Readme

jarvis-ci

A lightweight Node.js-based CI/CD tool that executes YAML-defined pipelines on local machines or servers.

jarvis-ci is designed for simplicity, control, and self-hosted automation, similar in concept to GitHub Actions or GitLab CI, but running entirely under user-managed infrastructure.

for local machine , the user needs to configure the proxy URL from https://smee.io

https://www.npmjs.com/package/jarvis-ci

Installation

npm install -g jarvis-ci

Overview

jarvis-ci enables developers to define CI/CD workflows using a YAML configuration file and execute them via a webhook-driven system.

It supports:

  • GitHub webhook-based triggers
  • YAML-based pipeline definitions
  • Local and server-based execution
  • Working directory isolation per repository
  • Restricted command execution for safety

For local development environments, webhook forwarding can be configured using a proxy service such as smee.io.

Core Features

  • YAML-driven pipeline execution
  • GitHub webhook integration
  • Multi-repository support
  • Local and public server deployment modes
  • Working directory isolation per pipeline
  • Whitelisted command execution model
  • Structured logging using Listr2

Security Model

The system enforces a strict command whitelist to prevent arbitrary execution.

Allowed commands:

const ALLOWED_COMMANDS = [
  "node",
  "npm",
  "docker",
  "docker-compose",
  "ssh",
  "git",
];

Each pipeline is executed in an isolated working directory to prevent cross-repository contamination.

Pipeline Configuration (YAML)

Each repository defines its pipeline using a .jarvis.yml file.

Example configuration:

by default the cwd is /home/user/tmp/ else if user wants to change the working directory for some operation

steps:
  - name: Install dependencies
    run:
      cmd: npm
      args: ["install"]
      cwd: "/path"  (optional)

  - name: Run tests
    run:
      cmd: npm
      args: ["test"]

CLI Commands

Configuration

Add repository configuration

jarvis config add

Adds a new repository configuration for CI execution.

Set webhook port

jarvis config port

Defines the port on which the webhook server will run.

Configure server mode

jarvis config local

Sets webhook server accessibility mode:

  • yes: Localhost only
  • no: Public IP accessible

Configure proxy mode

jarvis config proxy

Enables webhook forwarding through smee.io for local development environments.

Runtime

Start webhook server

jarvis start

Starts the webhook listener and pipeline execution engine.

Pipeline Management

List pipelines

jarvis pipeline list

Displays all configured pipelines.

Delete pipeline

jarvis pipeline delete <pipelineName>

Removes an existing pipeline configuration.

Edit pipeline

jarvis pipeline edit <pipelineName>

Modifies an existing pipeline configuration.

Execution Flow

The system operates as follows:

  1. GitHub push event triggers webhook
  2. Webhook server receives and validates event
  3. Repository configuration is matched
  4. Repository is cloned or updated in isolated directory
  5. .jarvis.yml pipeline is loaded
  6. Pipeline is validated against allowed commands
  7. Steps are executed sequentially using Listr2
  8. Each step runs in its isolated working directory using execa

Architecture Components

  • YAML parser for pipeline definitions
  • Validation layer enforcing command restrictions
  • Execution engine using execa for process control
  • Task runner using Listr2 for structured output
  • Webhook handler based on @octokit/webhooks
  • Repository workspace isolation layer

Development Mode (Local Setup)

For local environments, webhook events can be forwarded using a proxy such as smee.io.

This allows GitHub webhooks to reach a locally running jarvis-ci instance.

Design Principles

  • Minimal configuration overhead
  • Deterministic pipeline execution
  • Secure command execution model
  • Isolation per repository workspace
  • Predictable and traceable CI behavior

Future Improvements

  • Containerized execution per pipeline
  • Parallel pipeline execution engine
  • Artifact storage system
  • Retry and failure policy system
  • Plugin-based step extensions
  • Remote dashboard for pipeline monitoring