Security News
Another Round of TEA Protocol Spam Floods npm, But It’s Not a Worm
Recent coverage mislabels the latest TEA protocol spam as a worm. Here’s what’s actually happening.
By Philipp Burckhardt - Nov 14, 2025
@lunariajs/core
Advanced tools
@lunariajs/core
The @lunariajs/core package contains the base tracking and dashboard generation systems used across its related packages. You should use this package if:
- You need fine-grained control over your dashboard
- You want to build a package over it
- There isn't a framework-specific
@lunariajspackage for your use-case
Installation
You can install @lunariajs/core using your preferred package manager:
# npm
npm install @lunariajs/core
# pnpm
pnpm add @lunariajs/core
# yarn
yarn add @lunariajs/core
Basic Usage
Start using @lunariajs/core by setting up a script to generate your translation dashboard status.
The example below contains all of the required options to generate a dashboard tracking the status of both the Portuguese and Spanish translations of a site:
// scripts/translation-status.js
import { createTracker } from '@lunariajs/core';
const tracker = await createTracker({
// Current repository of this script and content
repository: 'https://github.com/me/cool-docs',
dashboard: {
// Generated dashboard URL used in meta tags
url: 'https://tracker.cool-docs.com',
},
// Information about the source locale of your content
defaultLocale: {
// User-friendly label/name of the language
label: 'English',
// BCP-47 tag of the language
lang: 'en',
content: {
// Glob pattern of where your content is
location: 'content/en/**/*.md',
},
},
// Array of objects of your translated locales.
locales: [
{
label: 'Português',
lang: 'pt',
content: {
location: 'content/pt/**/*.md',
},
},
{
label: 'Spanish',
lang: 'es',
content: {
location: 'content/es/**/*.md',
},
},
],
// Property to find in valid frontmatter files marking if a page should be translated or not
translatableProperty: 'i18nReady',
});
// Generates your dashboard, by default at dist/translation-status/index.html
tracker.run();
To run the script, you need to add a new script to your package.json file and trigger it during your website's build and deploy process, for example:
"scripts": {
"docs:dev": "vitepress dev .",
"docs:build": "vitepress build .",
"docs:preview": "vitepress preview .",
+ "translation-status": "node ./scripts/translation-status.js"
},
Want other usage examples? Head over to the examples/ directory and inspect the source code for tips & tricks about using @lunariajs/core with other frameworks and environments.
FAQs
Localization management system for open-source projects
The npm package @lunariajs/core receives a total of 956 weekly downloads. As such, @lunariajs/core popularity was classified as not popular.
We found that @lunariajs/core demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 0 open source maintainers collaborating on the project.
Package last updated on 01 Nov 2023
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
PyPI Expands Trusted Publishing to GitLab Self-Managed as Adoption Passes 25 Percent
PyPI adds Trusted Publishing support for GitLab Self-Managed as adoption reaches 25% of uploads
By Sarah Gooding - Nov 14, 2025
Research
/Security News
Malicious Chrome Extension Exfiltrates Seed Phrases, Enabling Wallet Takeover
A malicious Chrome extension posing as an Ethereum wallet steals seed phrases by encoding them into Sui transactions, enabling full wallet takeover.
By Kirill Boychenko - Nov 12, 2025