Security News
The Risks of Misguided Research in Supply Chain Security
Snyk's use of malicious npm packages for research raises ethical concerns, highlighting risks in public deployment, data exfiltration, and unauthorized testing.
@coffeekraken/scripts-stack
Advanced tools
Nice terminal interface to handle npm/yarn scripts execution as well as watch and run automatically the wanted ones
Coffeekraken scripts-stack package is made to help you manage all the scripts that you use in each projects like scripts to compile your javascripts/stylesheets files, optimize images, etc... The goal of this package is to give you a nice interface that list all your scripts (defined in package.json or in scripts-stack.config.js files), let you launch every scripts by hand or automatically using a simple watch mecanism.
To install the package, simply launch the command bellow:
npm i @coffeekraken/scripts-stack -save-dev
To start using this package, you need first to list some scripts inside of your package.json file like so:
{
"name": "my-cool-project",
"version": "1.0.0",
"scripts": {
"my-cool-script": "webpack ...",
"another-script": "sass ...",
// etc...
},
"dependencies": {
},
// etc...
}
Once you have defined your scripts, you can also add some watch patterns (glob patterns) associated with your scripts like so:
{
// etc...
"scripts": {
"my-cool-script": "webpack ...",
"another-script": "sass ...",
// etc...
},
"watch": {
"my-cool-script": {
"paths": "src/js/**/*.js"
},
"another-script": {
"paths": "src/css/**/*.scss"
},
// etc...
},
// etc...
}
This will make your scripts launch themselves when your sources files are updated.
Once your configuration has been made, you just need to execute this command line:
coffeekraken-scripts-stack
This package expose a CLI. Here it is:
coffeekraken-scripts-stack <scripts> [options]
This CLI has multiple options. Here's the list:
-c|--color
Specify the color that you want for the terminal interface
yellow
--config
Specify the path to some configuration files to use. Separated by spaces
--no-watch
If this option is specified, the watch mecanism will not be executed
--no-switch
Do not switch automatically between the scripts when they are launched
--no-notifications
Do not launch notifications when a script is completed, in error, etc...
-i|--ignore
List some scripts by name to ignore in the interface. Separated by spaces
In order to configure your scripts-stack instance, you just need to create a scripts-stack.config.js
file in your repository root folder.
Here's a scripts-stack.config.js
config file sample:
module.exports = {
/**
* This list all your scripts that you want in the scripts-stack instance.
* @type Object
*/
scripts: {
"my.cool.script": "babel ...",
// etc...
},
/**
* This specify for each scripts that you want which files need to be monitored.
* This use the glob pattern system
* @type Object
*/
watch: {
"my.cool.script": {
"paths": "src/js/**/*.js"
},
// etc...
},
/**
* This specify the list of scripts that you want to ignore in the interface. Just list the scripts names.
* @type Array
*/
ignore: []
};
We are a young collective of front-end creative developers with one goal in mind. Build tools to make every team working day life better. This is our first and only concern. All our tools are build around that purpose. All what we provide are some cool tools that you can use the way you want. These tools features cover a large scope of the front-end workflow (styleguide generation, colors/fonts management, etc...). You can use only the parts that you need and let the rest aside...
FAQs
Nice terminal interface to handle npm/yarn scripts execution as well as watch and run automatically the wanted ones
The npm package @coffeekraken/scripts-stack receives a total of 0 weekly downloads. As such, @coffeekraken/scripts-stack popularity was classified as not popular.
We found that @coffeekraken/scripts-stack demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Snyk's use of malicious npm packages for research raises ethical concerns, highlighting risks in public deployment, data exfiltration, and unauthorized testing.
Research
Security News
Socket researchers found several malicious npm packages typosquatting Chalk and Chokidar, targeting Node.js developers with kill switches and data theft.
Security News
pnpm 10 blocks lifecycle scripts by default to improve security, addressing supply chain attack risks but sparking debate over compatibility and workflow changes.