
Product
Unify Your Security Stack with Socket Basics
A single platform for static analysis, secrets detection, container scanning, and CVE checks—built on trusted open source tools, ready to run out of the box.
@mcflyjs/config
Advanced tools
McFly is a no-framework metaframework
that assists in leveraging the web platform
I often wonder what it would look like to build sites & apps knowing just the basics.
I thought:
McFly is my reimagination of web development: Back to the basics. Into the future.
We are currently in a Proof of Concept phase. All parts are subject to breaking changes in minor releases.
Run the following to generate a McFly starter project.
npm create mcfly@latest
✅ Use vanilla custom elements (or sugar-coated web components)
✅ Write server-powered .html pages
✅ "Use the Platform™" on both server runtimes & browsers
✅ Use server-side rendering
✅ Deploy anywhere, even the Edge
1. ./src/pages/
.html
files<script server:setup>
to define logic that runs on the server, which then gets stripped away2. ./src/components/
.js
files for now)hello-world.js
component can be used as <hello-world>
.html
fragments; a my-header.html
fragment can be directly used as <my-header>
3. ./src/api/
./src/api/users.ts
can be accessed via http://<domain>/api/users
The following are the project packages published on the NPM registry:
Package | Description | Version |
---|---|---|
@mcflyjs/cli | The McFly CLI tooling | |
@mcflyjs/config | Nitro server config for McFly projects | |
@mcflyjs/core | Route event and config handlers | |
create-mcfly | Script for scaffolding a new McFly workspace |
This framework is a result of an exploration for using Nitro and vanilla JS custom elements using a minimal Web Component Base class.
Nitro is the same production-grade web server powering Nuxt
Just keep building
A project by Ayo Ayco
FAQs
Nitro configuration for McFly apps
We found that @mcflyjs/config demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Product
A single platform for static analysis, secrets detection, container scanning, and CVE checks—built on trusted open source tools, ready to run out of the box.
Product
Socket is launching experimental protection for the Hugging Face ecosystem, scanning for malware and malicious payload injections inside model files to prevent silent AI supply chain attacks.
Research
/Security News
The Socket Threat Research Team uncovered a coordinated campaign that floods the Chrome Web Store with 131 rebranded clones of a WhatsApp Web automation extension to spam Brazilian users.