npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

xypriss-swagger

v1.0.41

Published

Auto-documentation plugin for XyPriss Router V2

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Maintainers

nehonixpkgnehonixpkg

Keywords

Readme

XyPriss Swagger Plugin

The XyPriss Swagger Plugin is a high-performance auto-documentation tool for the XyPriss ecosystem. It automatically generates OpenAPI 3.0 specifications by introspecting the XyPriss route registry and serves a beautiful Swagger UI through an isolated auxiliary server.

Features

  • Auto-Generation: Automatically extracts routes, methods, path parameters, and guards from the XyPriss engine.
  • Isolated Serving: Uses an auxiliary server to serve the documentation, keeping your main application logic clean and secure.
  • Zero-Trust Compatible: Integrates with XyPriss security layers and handles route-level guards.
  • Micro-Services Ready: Each instance can be configured with its own port and path.
  • High-Performance Streaming: Swagger UI is served using Node.js Transform streams for zero-buffer, high-speed delivery.

Installation

Install the plugin via XFPM:

xfpm add xypriss-swagger --verify

Usage

1. Register the Plugin

In your main XyPriss application, import and register the SwaggerPlugin:

import { SwaggerPlugin } from "xypriss-swagger";
import { createServer } from "xypriss";

const server = createServer({
    plugins: {
        register: [
            SwaggerPlugin({
                port: 7070, // Port for the documentation server
                path: "/docs", // Path to access the Swagger UI
                title: "My API", // Documentation title
                version: "1.0.0", // API Version
            }),
        ],
    },
});

server.start();

2. Configure Plugin Access

Ensure the plugin is authorized in your xypriss.config.jsonc:

{
    "$internal": {
        "xypriss-swagger": {
            "__meta__": {
                "path": "ROOT://",
            },
            "__xfs__": {
                "path": "CWD://",
            },
            "permissions": {
                "allowedHooks": [
                    "XHS.HOOK.HTTP.REQUEST",
                    "XHS.PERM.SECURITY.SENSITIVE_DATA",
                    "XHS.HOOK.LIFECYCLE.REGISTER",
                    "XHS.HOOK.LIFECYCLE.SERVER_START",
                    "XHS.PERM.OPS.AUXILIARY_SERVER",
                    "XHS.PERM.SECURITY.CONFIGS",
                ],
                "policy": "allow",
            },
        },
    },
}

Configuration Options

| Option | Type | Default | Description | | :------------ | :------- | :-------------------- | :------------------------------------------------------------------------ | | port | number | 7070 | The port on which the auxiliary Swagger server will run. | | path | string | "/docs" | The base path for the documentation (e.g., http://localhost:7070/docs). | | title | string | "API Documentation" | The title displayed in the Swagger UI. | | version | string | "1.0.0" | The version of the API documentation. | | description | string | plugin description | Brief description of your API. |

Security & Trust

To use this plugin in a zero-trust environment, you must trust the developer ID.

[!IMPORTANT] Developer ID: ed25519:a58b17a3e46302dd3ae5538bc9b8b991c57f4c5fe2e7d8ac41803de818d947f4

Enrollment

When prompted by XFPM, paste the Developer ID above to authorize its execution.

Documentation Access

Once the server is started, you can access:

  • Swagger UI: http://localhost:7070/docs
  • OpenAPI JSON: http://localhost:7070/docs/swagger.json

Advanced: Route Metadata

You can customize the documentation for individual routes by adding metadata:

server.get(
    "/users/:id",
    (req, res) => {
        // ...
    },
    {
        meta: {
            summary: "Get user by ID",
            tags: ["Users"],
            openapi: {
                responses: {
                    "200": {
                        description: "User found",
                    },
                },
            },
        },
    },
);

[!NOTE] For a deep dive into how XyPriss manages plugin isolation and filesystem access, see the Workspace System Guide.

Security & Permissions

In order to properly function and integrate safely into your Zero-Trust XyPriss environment, this plugin requires the following privileges to be strictly allowed in your xypriss.config.jsonc:

Filesystem Context (CWD://)

Why? The plugin needs to resolve the active execution directory to dynamically scan your route files, interpret comments, and compile the OpenAPI JSON structure correctly. Is it safe? Absolutely. The plugin performs exclusive read-only operations targeting your router files, safely ignoring sensitive .env or credentials.

Lifecycle & Auxiliary Hooks

The Swagger plugin operates as an independent subsystem connected to the main server loop:

  • XHS.HOOK.LIFECYCLE.REGISTER: Required to negotiate initialization with the core engine.
  • XHS.HOOK.LIFECYCLE.SERVER_START: Allows the plugin to participate safely in the startup sequence.
  • XHS.PERM.OPS.AUXILIARY_SERVER: Crucial. Permits the deployment of the isolated documentation HTTP server without exposing your main server loop.

Security Access Hooks

  • XHS.PERM.SECURITY.SENSITIVE_DATA & XHS.PERM.SECURITY.CONFIGS: Required for the plugin to introspect the router architecture and extract the internal metadata needed for documentation auto-generation.
  • XHS.PERM.ROUTING.BYPASS_NAMESPACE: Mandatory for UI registration. As the Swagger UI is hosted on a high-level path (e.g., /docs), this permission is required to authorize routing outside the default /xypriss-swagger/ namespace.

By explicitly providing these permissions, you maintain complete Zero-Trust authority over what the plugin is allowed to do, preventing silent system overrides or unwanted network binding.

License

Provided under the Nehonix Open Source License (NOSL) v1.0. Check the included LICENSE file for comprehensive terms.

By Nehonix