Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@epilot360/create-mfe-app
Advanced tools
Create Epilot360 Portal Microfrontend apps with complete deployment setup.
Create Epilot360 App works on macOS, Windows, and Linux.
You can create Epilot360 MFE either of the following ways,
npm install -g @epilot360/create-mfe-app
Then to create new MFE application just run create-epilot360-app
the terminal,
Enter the directory path or name for the project, by default
it is .
, eg. epilot360-topbar
? Directory for new project: epilot360-topbar
Choose the type of Epilot360 App you wanted to create, singleSpa-react-app / parcel
or in-browser utility module
? Select type to generate for epilot360 portal (Use arrow keys)
❯ single-spa application / parcel
in-browser utility module (styleguide, api cache, etc)
Name for your MFE project, you can just type the name simply as topbar
, so with this app package name will be prefixed with @epilot360
and final name would be @epilot360/topbar
to register in the root config.
? Project name (can use letters, numbers, dash or underscore): topbar
Boom, that's it.🚀 Your project is ready. All the dependencies will be installed automatically. All MFE projects uses yarn
for managing packages.
✨ Done in 66.16s.
Project setup complete!
Steps to test your React Epilot 360 application:
1. cd <project-name>
1. Run 'yarn start'
2. Go to 'epilot360-root-confg' and integrate '@epilot360/topbar' to see it working!
Alternatively you can also use npx @epilot360/create-mfe-app
to create MFE projects as it always uses the latest version.
FAQs
CLI tool for bootstrapping epilot360 mfe projects
We found that @epilot360/create-mfe-app demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 34 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.