New Research: Supply Chain Attack on Axios Pulls Malicious Dependency from npm.Details →
Socket
Book a DemoSign in
Socket
Book a DemoSign in

@libria/plugin-loader

Package Overview
Dependencies
Maintainers
1
Versions
5
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

@libria/plugin-loader

Simple plugin loader for Node.js applications

Source
npmnpm
Version
0.1.1
Version published
Weekly downloads
24
Maintainers
1
Weekly downloads
 
Created
Source

@libria/plugin-loader

A simple, type-safe plugin loader for Node.js applications. Supports both ESM and CommonJS plugins with glob pattern discovery.

Installation

npm install @libria/plugin-loader

Quick Start

1. Create a Plugin

Create a plugin.json manifest in your plugin directory:

{
  "name": "my-plugin",
  "pluginType": "greeting",
  "module": "./dist/index.mjs"
}

Create the plugin module:

// src/index.ts
import { definePlugin } from '@libria/plugin-loader';

export default definePlugin('greeting', {
  sayHello(name: string) {
    return `Hello, ${name}!`;
  }
});

2. Load Plugins

import { findPlugins, loadPlugin, loadAllPlugins } from '@libria/plugin-loader';

// Load all plugins from a directory
const plugins = await loadAllPlugins('./plugins', 'greeting');

for (const plugin of plugins) {
  console.log(plugin.api.sayHello('World'));
}

API

definePlugin<T>(pluginType, api, name?)

Helper function to create a type-safe plugin export.

import { definePlugin } from '@libria/plugin-loader';

export default definePlugin('my-type', {
  myMethod() {
    return 'Hello!';
  }
});

findPlugins(pattern, pluginType?)

Discovers plugins by scanning directories for plugin.json manifests.

import { findPlugins } from '@libria/plugin-loader';

// Simple directory path (scans one level deep)
const manifests = await findPlugins('./plugins');

// Glob pattern
const manifests = await findPlugins('./plugins/*-plugin');

// Recursive glob
const manifests = await findPlugins('./plugins/**/dist');

// Filter by plugin type
const manifests = await findPlugins('./plugins', 'greeting');

loadPlugin<T>(manifest)

Loads a single plugin from its manifest. Supports both ESM (module) and CommonJS (main) entry points.

import { findPlugins, loadPlugin } from '@libria/plugin-loader';

const [manifest] = await findPlugins('./plugins/my-plugin');
const plugin = await loadPlugin<{ sayHello: (name: string) => string }>(manifest);

console.log(plugin.api.sayHello('World'));

loadAllPlugins<T>(pattern, pluginType?)

Convenience function that combines findPlugins and loadPlugin. Discovers and loads all matching plugins.

import { loadAllPlugins } from '@libria/plugin-loader';

const plugins = await loadAllPlugins<{ greet: () => string }>(
  './plugins/*-plugin',
  'greeting'
);

for (const plugin of plugins) {
  console.log(plugin.api.greet());
}

Plugin Manifest

The plugin.json file defines plugin metadata:

FieldTypeRequiredDescription
namestringYesUnique plugin identifier
pluginTypestringYesPlugin category/type for filtering
modulestringNoESM entry point (relative path)
mainstringNoCommonJS entry point (relative path)
typesstringNoTypeScript declaration file

At least one of module or main must be specified.

ESM Plugin Example

my-plugin/
  plugin.json
  dist/
    index.mjs

{
  "name": "my-plugin",
  "pluginType": "feature",
  "module": "./dist/index.mjs"
}

CommonJS Plugin Example

my-plugin/
  plugin.json
  dist/
    index.cjs

{
  "name": "my-plugin",
  "pluginType": "feature",
  "main": "./dist/index.cjs"
}

Nested Manifest (dist folder)

You can place plugin.json inside the dist folder and use glob patterns to discover it:

my-plugin/
  dist/
    plugin.json
    index.mjs

// Discover plugins with manifest in dist/
const plugins = await loadAllPlugins('./plugins/*/dist');

Types

LibriaPlugin<T>

interface LibriaPlugin<T = unknown> {
  readonly pluginType: string;
  readonly name?: string;
  readonly api: T;
}

PluginManifest

interface PluginManifest {
  readonly name: string;
  readonly pluginType: string;
  readonly main?: string;
  readonly module?: string;
  readonly types?: string;
  readonly __dir: string; // Resolved absolute path
}

Error Handling

The library throws specific errors for common issues:

  • PluginLoadError - Failed to load the plugin module
  • PluginInvalidExportError - Plugin export is not a valid object
  • PluginTypeMismatchError - Plugin type doesn't match manifest
import { loadPlugin, PluginTypeMismatchError } from '@libria/plugin-loader';

try {
  const plugin = await loadPlugin(manifest);
} catch (error) {
  if (error instanceof PluginTypeMismatchError) {
    console.error(`Type mismatch: expected ${error.expected}, got ${error.actual}`);
  }
}

License

MIT

Keywords

plugin
loader
plugin loader
typescript

FAQs

Package last updated on 02 Feb 2026

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

Feross on TBPN: How North Korea Hijacked Axios

Security News

Feross on TBPN: How North Korea Hijacked Axios

Socket CEO Feross Aboukhadijeh breaks down how North Korea hijacked Axios and what it means for the future of software supply chain security.

By Sarah Gooding  -  Apr 08, 2026