Is this repo still maintained?

[mountaindude]

It's been quite some time since last update to this repo, is it still maintained?

Some of the NPM modules used have received significant updates since last update of this repo. As this repo is about providing strong security it's important to keep up to speed with dependencies etc, so that we always used libraries where vulnerabilities are patched etc. Obvious stuff, but still.

So... here's a friendly ping to the repo owner... What's the status?

[svarlamov]

Hi there, repo owner here. This is no longer actively maintained, as it is no longer used in our production stack. I might be able to devote a bit more time to this, as it seems quite a few projects are importing this and we would like to patch any vulnerable NPMs. As you can imagine, PRs are welcome and we're happy to add maintainers too. I think this repo is probably a decent starting point for some more serious work, if required due to breaking changes in any deps.

[mountaindude]

Cool! No worries about the non-maintained lib, things change. Simply the way things work. Nonetheless it's good to know what the status is.

I actually just sent in a PR (#11) before even reading this, updating deps to latest versions. Now, it looks like that dep hasn't been updated in a while either, but that's not on you :)

Thanks!

[svarlamov]

Awesome, the only issue now is that since I no longer have a good dev setup with Keycloak, I'm not sure how to test and review the PRs. Can you suggest anything? I'm not really up to date on the latest standards

[mountaindude]

Oh. Not sure what the standard setup would be (if there is one).

For dev I run Keycloak in a Docker container locally, with a production container running in a K8s cluster. The dev container is easy enough to set up, but I don't have anything like an official test suite for Keycloak.

Been using Keycloak in the role of a developer of solutions in need of authentication, rather than a developer creating Keycloak add-ons.

Not a lot of help/suggestions - I know. Sorry.

[svarlamov]

Great -- thank you for the suggestion. I will try to check on this over the weekend 😄

[jannes-io]

yet not a single one of them is actively maintained

aaaand neither is this one. Can you please archive the repo if you no longer plan to keep it updated?