Security News
RubyGems.org Adds New Maintainer Role
RubyGems.org has added a new "maintainer" role that allows for publishing new versions of gems. This new permission type is aimed at improving security for gem owners and the service overall.
@ribajs/events
Advanced tools
This is a hybrid build for CommonJS (CJS Node.js modules) and ESM (ECMAScript modules).
See here for an example configuration, this example builds the source to CJS and ESM and and defines the different outputs in the package.json:
"main": "[CommonJS version]",
"types": "[TypeScript definitions]",
"browser": "[CommonJS version]",
"module": ".[ESM version]",
We do the same with the only difference, that our browser output is also the ESM version for the reasion that we use Webpack to build and bundle the Riba.js projects:
"main": "[CommonJS version]",
"types": "[TypeScript definitions]",
"browser": "[ESM version]",
"module": ".[ESM version]",
Build
yarn run build
- Run all build scriptyarn run build:types
- Build the type definiton filesyarn run build:esm
- Build the ESM module versionyarn run build:cjs
- Build the CommonJS module versionOthers
yarn run clean
- Delete the build filesyarn run lint
- Lint the source files using ESLint and PrettierFAQs
Unknown package
The npm package @ribajs/events receives a total of 0 weekly downloads. As such, @ribajs/events popularity was classified as not popular.
We found that @ribajs/events demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
RubyGems.org has added a new "maintainer" role that allows for publishing new versions of gems. This new permission type is aimed at improving security for gem owners and the service overall.
Security News
Node.js will be enforcing stricter semver-major PR policies a month before major releases to enhance stability and ensure reliable release candidates.
Security News
Research
Socket's threat research team has detected five malicious npm packages targeting Roblox developers, deploying malware to steal credentials and personal data.