Security News
Oracle Drags Its Feet in the JavaScript Trademark Dispute
Oracle seeks to dismiss fraud claims in the JavaScript trademark dispute, delaying the case and avoiding questions about its right to the name.
By Sarah Gooding - Feb 07, 2025
New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More →
@smg-automotive/example
Advanced tools
@smg-automotive/example
A boilerplate package setup
To use this template create a new repository and select example-pkg from the template dropdown.
Make sure to name your repository following <name>-pkg convention.
If you're interested in automated dependency updates make sure that renovate has access to the new repository.
Things to do change when you use this repository as a template:
- replace
example-pkgwith the name of your package in thisREADME - update the
@smg-automotive/examplewith the name of your package inpackage.json - update
repositoryandhomepagesections inpackage.jsonto point to your GitHub repository - ensure that branch protection rules are applied to the
mainbranch (Settings > Branches)- Require a pull request before merging
- Require approvals
- Require status checks to pass before merging (project needs to be built in circle for the checks to show up)
- Require linear history
- Include administrators
- enable
dependabotfor security updates (Settings > Code security and analysis) - ensure that Frontend team has the admin access to the repository (Settings > Collaborators and teams)
- invite
automotiveengineeringbotas an outside collaborator to the repository with write access (this is needed to release the package) - login to GitHub as
automotiveengineeringbotand accept the invitation (credentials are in 1password) - provide usage examples in the
README.md - enable the project on circleci.com to build and test your package
- change the circleci status badge in this
READMEto the new project - develop an awesome package
- live long and prosper
example-pkg
Usage
npm install @smg-automotive/example
Development
npm run build
You can link your local npm package to integrate it with any local project:
cd smg-automotive-example-pkg
npm run build
cd <project directory>
npm link ../smg-automotive-example-pkg
Release a new version
New versions are released on the ci using semantic-release as soon as you merge into master. Please
make sure your merge commit message adheres to the corresponding conventions and your branch name does not contain forward slashes /.
FAQs
A boilerplate package setup
The npm package @smg-automotive/example receives a total of 6 weekly downloads. As such, @smg-automotive/example popularity was classified as not popular.
We found that @smg-automotive/example demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Package last updated on 15 Jan 2024
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
Linux Foundation Warns Open Source Developers: Compliance with Sanctions Is Not Optional
The Linux Foundation is warning open source developers that compliance with global sanctions is mandatory, highlighting legal risks and restrictions on contributions.
By Sarah Gooding - Feb 06, 2025
Security News
Maven Central Adds Sigstore Signature Validation
Maven Central now validates Sigstore signatures, making it easier for developers to verify the provenance of Java packages.
By Sarah Gooding - Feb 06, 2025