
Security News
PolinRider: North Korea-Linked Supply Chain Campaign Expands Across Open Source Ecosystems
PolinRider expands across npm, Packagist, Go modules, and Chrome extensions, using hidden loaders to target developer environments.
@rollup-use/core
Advanced tools
A pure-js npm library bundle tool use rollup. 此工具使用 rollup, 可以打包纯 js 的 npm 库项目.
@rollup-use/coreA pure-js npm library bundle tool use rollup. Clone js-starter to quick start.
此工具使用 rollup, 可以打包纯 js 的 npm 库项目. 中文文档. 可以复制 js-starter 以快速开始.
You can add your public repo here. 欢迎添加你的项目到这里.
Install dependencies
npm install @rollup-use/core typescript --save-dev
npm install @babel/runtime -save
Copy directory scripts into your project. Add 2 npm scripts to scripts of package.json like follow:
"scripts": {
"build-lib": "rollup -c scripts/build.js & node scripts/build.js --report",
"watch-lib": "rollup -c scripts/build.js --watch"
}
Check scripts/build.ts and change it for your requirement. In most case, you may only need to change input. Once scripts/build.ts changed, execute npm run compile-build-lib to generate scripts/build.js. Then execute npm run build-lib to generate the final results.
Don't include core-js in your package.json, including dependencies and devDependencies. Or there will be core-js imports in your bundled results.
安装依赖
npm install @rollup-use/core typescript --save-dev
npm install @babel/runtime -save
复制目录 scripts 到你的项目. 参照如下, 添加 3 条 npm script 到package.json的scripts:
"scripts": {
"build-lib": "rollup -c scripts/build.js & node scripts/build.js --report",
"watch-lib": "rollup -c scripts/build.js --watch"
}
按你的需求修改scripts/build.ts. 多数情况下你可能只需要修改input变量. 一旦scripts/build.ts有改动, 执行 npm run compile-build-lib 以生成 scripts/build.js. 再执行 npm run build-lib 即可生成最终结果.
不要在 package.json 中包含 core-js, 包括 dependencies 和 devDependencies. 否则打包结果中会有 core-js 导入.
FAQs
A pure-js npm library bundle tool use rollup. 此工具使用 rollup, 可以打包纯 js 的 npm 库项目.
The npm package @rollup-use/core receives a total of 15 weekly downloads. As such, @rollup-use/core popularity was classified as not popular.
We found that @rollup-use/core demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Security News
PolinRider expands across npm, Packagist, Go modules, and Chrome extensions, using hidden loaders to target developer environments.

Security News
Open source attacks are accelerating as AI coding agents pull in dependencies faster, with less human review.

Research
/Security News
Malicious Chrome and Firefox extensions posed as free VPNs while stealing clipboard data through later extension updates.