
Security News
PolinRider: North Korea-Linked Supply Chain Campaign Expands Across Open Source Ecosystems
PolinRider expands across npm, Packagist, Go modules, and Chrome extensions, using hidden loaders to target developer environments.
@haluo/biz
Advanced tools
线上 tag=online 2.0.x 分支publish 测试 tag=next 1.0.x 分支release
# nrm use npm
# npm login
# cd ./packages/haluo-biz
# npm run build
npm publish --tag=beta # 测试版本
npm publish --tag=next # 预发布版本
npm publish --tag=release # 待验证的正式版
npm publish --tag=latest # 最新稳定的正式版(用户默认安装)
npm publish # 正式发布版本
pnpm add @haluo/biz@online
1、创建本地库
cd ./packages/haluo-biz
npm link # 在全局 node_modules 目录下创建符号链接,指向当前模块
npm unlink # 删除全局符号链接
npm run build:watch # 监听文件变化,自动编译
2、业务项目根目录中使用软链访问本地库
npm link @haluo/biz # 在项目的 node_modules 目录中创建符号链接,指向全局链接的模块
npm unlink @haluo/biz # 删除项目符号链接
3、查看依赖包(非必需)
npm list # 查看所有依赖包
npm list -g --depth=0 # 查看全局依赖包
4、如果热更失效,可以
rm -rf node_modules && npm i && npm link @haluo/biz && npm run dev
或
npm uninstall @haluo/biz && npm i @haluo/biz && npm link @haluo/biz && npm run dev
FAQs
rich text
We found that @haluo/biz demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 5 open source maintainers collaborating on the project.
Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Security News
PolinRider expands across npm, Packagist, Go modules, and Chrome extensions, using hidden loaders to target developer environments.

Security News
Open source attacks are accelerating as AI coding agents pull in dependencies faster, with less human review.

Research
/Security News
Malicious Chrome and Firefox extensions posed as free VPNs while stealing clipboard data through later extension updates.