Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
@ngx-rocket/scripts
Advanced tools
Support scripts for ngX-Rocket projects.
In order to simplify the workflow of applications generated with ngX-Rocket CLI or ngX-Rocket generator, we made this repo to gather all additional scripts and build tools.
Since this module is an independant package, you can even use for projects not built from ngX-Rocket if you find it useful.
npm install --save @ngx-rocket/scripts
This modules provides CLI commands to be used in NPM scripts, along with some
Cordova hooks (see hooks
folder).
ngx-scripts env2json <env_var> [<env_var2> ...] [-o <file.json>]
Default output file is src/environments/.env.json
.
ngx-scripts cordova <command> [options] [-- <cordova_options>]
Unless the --fast
option is provided, the Angular app is rebuilt before executing the command, using npm run build
.
Any accepted Cordova option can be passed through after --
.
--fast
: Skip Angular app rebuild--copy <path>
: Copy built apps to the specified path (only works with cordova build
)--dev
: Build Angular app in dev
mode (default is prod
)-e, --env <name>
: Target environment for npm run build
--device
: Deploy Cordova build to a device--emulate
: Deploy Cordova build to an emulator--debug
: Create a Cordova debug build--release
: Create a Cordova release build--yarn
: Use Yarn instead of NPM to run the build
scriptngx-scripts cordova prepare
ngx-scripts cordova run ios --dev --debug --emulate
ngx-scripts cordova build ios --env prod --device --release -- --developmentTeam="ABCD" --provisioningProfile="UUID"
platforms
, plugins
) and dist foldersclean [--cordova] [--dist] [--path <path>]
--cordova
: Remove only Cordova folders--dist
: Remove only dist folder--path <path>
: Remove only specified pathngx-scripts unpin-ionic-dependencies
This removes peerDependencies
from ionic-angular
's package.json
.
The Ionic team insist on fixing their dependencies to exact versions which prevents getting bugfixes and new features outside of their release schedule (see this issue for example).
Running this allows you using higher dependencies versions that specified in Ionic without warnings all the way.
1.1.0
--verbose
option for CordovaFAQs
Support scripts for ngX-Rocket projects
The npm package @ngx-rocket/scripts receives a total of 4,526 weekly downloads. As such, @ngx-rocket/scripts popularity was classified as popular.
We found that @ngx-rocket/scripts demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.