Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
@silvermine/generator-typescript
Advanced tools
A Yeoman generator for creating back-end and front-end TypeScript projects with out-of-the-box build, test, and linting configuration.
A Yeoman generator for creating TypeScript projects.
This generator can create starter code and configuration for back-end and front-end TypeScript projects. Using it as a starting point for new TypeScript projects can help create consistency in coding standards, project structure, and configuration across your projects, and save you much time when setting up a new TypeScript project.
Using this generator to create TypeScript projects can save hours in setup, configuration, and debugging. Generated projects include:
.gitignore
, .npmignore
,
package.json
, webpack.config.js
, LICENSE
, and README
files are included.First, install Yeoman globally if it's not already installed:
npm i -g yo
Then, install this generator:
npm i -g @silvermine/generator-typescript
Finally, create your project folder and run the generator in its root:
mkdir YOUR_DIR_NAME && cd YOUR_DIR_NAME
yo @silvermine/typescript
One of the questions that the generator prompts you with is: "Is this a library?".
Answering "Yes" means that the project you are generating is meant to be published and
consumed by other projects. For example, underscore
and lodash
are libraries because
they are meant to be consumed by other projects.
Therefore, generated libraries include configuration to output distributable files like CommonJS and EcmaScript Module compatible JavaScript, and TypeScript types. If your project is not a library, these distributable file outputs are not necessary and so are not included in your generated project. A non-library project is something like a website, an app, or a server that serves a REST API.
This software is released under the MIT license. See the license file for more details.
FAQs
A Yeoman generator for creating back-end and front-end TypeScript projects with out-of-the-box build, test, and linting configuration.
We found that @silvermine/generator-typescript demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 3 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.