Security News
Opengrep Emerges as Open Source Alternative Amid Semgrep Licensing Controversy
Opengrep forks Semgrep to preserve open source SAST in response to controversial licensing changes.
By Sarah Gooding - Jan 28, 2025
New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More →
@integration-app/sdk
Advanced tools
Releasing Package
To release a new version of a package (@integration-app/sdk, @integration-app/ui, @integration-app/react), do the following:
- Go to the package and type
npm version -- patch(ornpm version -- minorornpm version -- major) to bump the version. - Create a PR with the changes.
- Merge the PR.
- Run a Github Action to publish a package.
Rollup Configuration
To see the complete configuration, refer to the rollup.config.mjs and rollup.dts.config.mjs files. Although these files are self-explanatory, here's some additional information:
In rollup.config.mjs, we set {external: [/node_modules/]} to exclude our dependencies from being bundled.
Bundle and DTS File Generation Workflow
When using rollup-plugin-dts and @rollup/plugin-typescript in the same configuration, we experienced issues with generating incorrect DTS files. To solve this, we use two Rollup configurations:
rollup.config.mjsfor generating bundlesrollup.dts.config.mjsfor generating DTS files.
Build
For build, the following steps are taken:
- Clean the
/distfolder and./bundle.*files. - Rollup with
rollup.config.mjsconfiguration generates bundle files and basic DTS files, which are placed in thedist/dtsfolder. - Rollup with
rollup.dts.config.mjsconfiguration uses the basic DTS files to generate*.d.tsfiles for each bundle.
Development
During development, the following steps are taken:
- Run
buildto generate bundle and DTS files.- If not, Rollup with
rollup.dts.config.mjsin watch mode fails due to missing DTS files (race condition).
- If not, Rollup with
- Concurrently run two Rollup processes in watch mode:
- Rollup with
rollup.config.mjsconfiguration to generate bundle files and basic DTS files. - Rollup with
rollup.dts.config.mjsconfiguration to generate DTS files for each bundle.
- Rollup with
Package.json exports
{
"exports": {
"types": "./dist/index.d.ts", // TypeScript typings for NodeNext modules
"require": "./dist/index.js", // used for require() in Node 12+
"import": "./dist/index.module.mjs" // ESM bundle
},
"types": "./dist/index.d.ts", // TypeScript typings
"main": "./dist/index.js", // CommonJS bundle
"module": "./dist/index.module.mjs", // ESM bundle
"unpkg": "./bundle.js", // UMD bundle
}
FAQs
JavaScript SDK for Integration.app
The npm package @integration-app/sdk receives a total of 6,350 weekly downloads. As such, @integration-app/sdk popularity was classified as popular.
We found that @integration-app/sdk demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Package last updated on 24 Jan 2024
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
Node.js EOL Versions CVE Dubbed the "Worst CVE of the Year" by Security Experts
Critics call the Node.js EOL CVE a misuse of the system, sparking debate over CVE standards and the growing noise in vulnerability databases.
By Sarah Gooding - Jan 24, 2025
Security News
cURL Project and Go Security Teams Reject CVSS as Broken
cURL and Go security teams are publicly rejecting CVSS as flawed for assessing vulnerabilities and are calling for more accurate, context-aware approaches.
By Sarah Gooding - Jan 24, 2025