New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More
Socket
Sign inDemoInstall
Socket
Sign inDemoInstall

@hideoo/create-app

Package Overview
Dependencies
Maintainers
0
Versions
25
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

@hideoo/create-app

CLI utility to bootstrap a new project by creating a new app from scratch or update an existing app.

4.3.0
latest
Source
npm
Version published
Maintainers
0
Created
Source

@hideoo/create-app 🏗️

Don't Repeat Yourself

Integration Status License

Bootstrapping a new project always consists of the exact same steps like setting up TypeScript, installing dependencies, configuring a linter, adding various miscellaneous files and so on.

@hideoo/create-app is a very opinionated CLI utility to help me quickly bootstrap a new project by either:

  • creating a new project from scratch
  • updating a new project generated with pnpm create vite or pnpm create next-app

Note: pnpm and the GitHub CLI are required to use this utility.

Usage

$ pnpm create @hideoo/app

And that's it, no options, no configuration and no extra tweaks needed, you are ready to go!

Features

Either create a new app from scratch (in the current directory or a new directory) or update an existing app.

Tools

Package.json

  • Pre-fill most common fields
  • Add a lint script to lint and typecheck the code
  • Add a format script to ensure formatting
  • Enforce the package manager to the latest version of pnpm (reused in GitHub Actions)
  • Enforce a minimum Node.js version (reused in GitHub Actions)
  • Optionally add the configuration for publishing to npm
  • Sort all well-known fields based on custom rules

Dependencies

  • Automatically install all dependencies using pnpm
  • Use the latest version for all new and existing dependencies (versions are fetched from jsDelivr)

Miscellaneous

  • Automatically run Prettier and ESLint with the --fix option on all files (this is particularly useful when updating an existing project to ensure all files match the proper code style)
  • Add various various pre-filled files like .gitignore, README.md and LICENSE

Git

GitHub Actions

  • Create an autofix workflow to ensure formatting and using autofix.ci to automatically update pull requests if needed
  • Create an integration workflow to lint, typecheck and test the project for every push on the main branch or pull request
  • Add a customizable release workflow
    • For public npm packages:
      • Use Changesets to manage versioning and changelogs
      • A webpage to create a new npm automation access token will be opened during the installation in order to automatically add the new token as a secret to the repository matching the name of the app on GitHub if it exists
      • The released package(s) will be published with provenance to the npm registry
    • For other projects:
      • The release workflow can be triggered by bumping the version number in a commit with a tag matching the new version number (or just running pnpx bumpp)
      • A new release containing the changelog will be published on GitHub based on conventional commits

License

Licensed under the MIT License, Copyright © HiDeoo.

See LICENSE for more information.

Keywords

create
app
bootstrap
scaffold
automatic
configuration

FAQs

Package last updated on 16 Dec 2024

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

Lazarus Strikes npm Again with New Wave of Malicious Packages

Research

Security News

Lazarus Strikes npm Again with New Wave of Malicious Packages

The Socket Research Team has discovered six new malicious npm packages linked to North Korea’s Lazarus Group, designed to steal credentials and deploy backdoors.

By Kirill Boychenko  -  Mar 10, 2025