Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@hideoo/generator-starlight-plugin
Advanced tools
Yeoman generator for Starlight plugins.
An opinionated but still lightweight Yeoman generator to help create Starlight plugins.
To use the generator, run the following command in your terminal from the directory where you want to work on your plugin:
npx -p yo -p @hideoo/generator-starlight-plugin -- yo @hideoo/starlight-plugin
To start creating your Starlight plugin, edit the packages/plugin-name/index.ts
file which will be the entry point of your plugin.
To test your plugin, run the following command from the docs/
directory:
pnpm dev
To learn more about plugin development, check the Starlight documentation.
The generated project uses a monorepo structure with different pnpm workspaces:
docs/
: A Starlight documentation project to document your plugin that also acts as a playground to test it.packages/plugin-name/
: A package containing your Starlight plugin.The generated project contains the bare minimum to get started with a Starlight plugin. Here are some additional resources to help you develop and release your plugin:
[!TIP] After deploying your documentation, add a link to it in the
packages/plugin-name/README.md
file to help users find it.
Licensed under the MIT License, Copyright © HiDeoo.
See LICENSE for more information.
FAQs
Yeoman generator for Starlight plugins.
The npm package @hideoo/generator-starlight-plugin receives a total of 11 weekly downloads. As such, @hideoo/generator-starlight-plugin popularity was classified as not popular.
We found that @hideoo/generator-starlight-plugin demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.