Security News
Vite+ Joins the Push to Consolidate JavaScript Tooling
Evan You announces Vite+, a commercial, Rust-powered toolchain built on the Vite ecosystem to unify JavaScript development and fund open source.
By Sarah Gooding - Oct 15, 2025
Introducing Socket Firewall: Free, Proactive Protection for Your Software Supply Chain.Learn More →
@neodx/autobuild
Advanced tools
🛠️ autobuild - Zero configuration libraries builder
In early development
One command, one dependency and zero configuration to build your libraries.
Features
- Zero configuration with auto detection
- SWC additional configuration (
.swcrc) - Babel (
.babelrcor other formats) - we should replace (or add one more step?) swc with babel when we found.babelrc - CSS
- PostCSS (by default if we found
postcss.config.jsor any other pre-processor) - SCSS, LESS, Stylus
- Modules (
my-file.module.css) and global (any other) files
- PostCSS (by default if we found
- SWC additional configuration (
- Beautiful TypeScript support
- Builds clean TypeScript definitions
- Support configuration:
baseUrl, paths, externalHelpers, target, sourceMap, experimentalDecorators
- Multiple entries and outputs
- Different outputs:
CJS,ESM(.mjs),UMD - Single or multiple inputs: file, array, globs and all together
- Out-of-box split output on multiple entries
- wip
package.jsonupdate suggestion:exportsandtypesVersions
- Different outputs:
Installation and fast setup
Install autobuild with any package manager: yarn add -D @neodx/autobuild / npm i -D @neodx/autobuild.
Describe your package.json:
{
files: ['dist', 'README.md'],
scripts: {
build: 'autobuild src/index.ts'
}
}
And try to run our CLI: yarn autobuild
Known issues and limitations
Slow TypeScript definitions and CSS build time
We use rollup-plugin-dts and rollup-plugin-postcss,
both of them significant slow down the build time.
Probably, we will change our setup with other solutions or even with self-made plugins in future.
Limited CSS support - single file only, no imports in generated code
Unfortunately, currently we can't provide great CSS output :(
Supported features:
- CSS modules (
my-file.module.css), global styles - Scss, less, stylus
- PostCSS configuration
- Minification
Unsupported:
- Multiple entries - see our "advanced-mixed" example
- Import statements in built code, which is required for DX with multiple entries
Temporal milestones
-
[rejected]Replace postcss plugin with https://www.npmjs.com/package/rollup-plugin-styles - Add support for CSS splitting
- Research why swc remove
.scssextension - Fork
rollup-plugin-styles
FAQs
🛠️ autobuild - Zero configuration libraries builder
The npm package @neodx/autobuild receives a total of 28 weekly downloads. As such, @neodx/autobuild popularity was classified as not popular.
We found that @neodx/autobuild demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 21 May 2024
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
Ruby Central Faces Backlash After Publishing Incident Timeline on RubyGems Access Dispute
Ruby Central’s incident report on the RubyGems.org access dispute sparks backlash from former maintainers and renewed debate over project governance.
By Sarah Gooding - Oct 14, 2025
Research
/Security News
Weaponizing Discord for Command and Control Across npm, PyPI, and RubyGems.org
Socket researchers uncover how threat actors weaponize Discord across the npm, PyPI, and RubyGems ecosystems to exfiltrate sensitive data.
By Olivia Brown - Oct 11, 2025