Security News
Crates.io Implements Trusted Publishing Support
Crates.io adds Trusted Publishing support, enabling secure GitHub Actions-based crate releases without long-lived API tokens.
By Sarah Gooding - Jul 16, 2025
You're Invited:Meet the Socket Team at BlackHat and DEF CON in Las Vegas, Aug 4-6.RSVP →
@appsemble/webpack-config
Advanced tools
Appsemble Webpack Configuration
An opinionated reusable Webpack configuration for block development
Table of Contents
Installation
npm install @appsemble/webpack-config
Usage
No setup is needed to use this configuration. @appsemble/cli will automatically fall back to this
configuration if no webpack file has been specified in the .appsemblerc.yaml of the block and no
webpack.config.js file exists.
This Webpack preset features:
- TypeScript
- CSS modules (
*.module.css) - Static files (
*.gif,*.jpg,*.jpeg,*.png,*.svg,*.woff,*.woff2) - Case sensitive files
- Optimizations for SVG and CSS
TypeScript
In order to add support for static assets and CSS modules, use the following tsconfig.json
options:
{
"compilerOptions": {
"types": ["@appsemble/webpack-config/types"]
}
}
Manual Adjustments
Since a Webpack configuration is a function that returns a Webpack configuration, this preset can be
overridden by simply calling it from a file named webpack.config.js in the block root and
modifying the result.
import createConfig from '@appsemble/webpack-config';
import ImageMinimizerPlugin from 'image-minimizer-webpack-plugin';
export default function webpackConfig(blockConfig, options) {
const config = createConfig(blockConfig, options);
// Add a plugin for example
config.plugins.push(new ImageMinimizerPlugin());
// Or configure a fallback
config.resolve.alias.fallback.fs = false;
return config;
}
License
FAQs
NodeJS utilities used by Appsemble internally.
The npm package @appsemble/webpack-config receives a total of 611 weekly downloads. As such, @appsemble/webpack-config popularity was classified as not popular.
We found that @appsemble/webpack-config demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 3 open source maintainers collaborating on the project.
Package last updated on 17 Jul 2025
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
/Security News
Tracking Protestware Spread: 28 npm Packages Affected by Payload Targeting Russian-Language Users
Undocumented protestware found in 28 npm packages disrupts UI for Russian-language users visiting Russian and Belarusian domains.
By Olivia Brown - Jul 15, 2025
Research
/Security News
Contagious Interview Campaign Escalates With 67 Malicious npm Packages and New Malware Loader
North Korean threat actors deploy 67 malicious npm packages using the newly discovered XORIndex malware loader.
By Kirill Boychenko - Jul 14, 2025