Security News
NIST Misses 2024 Deadline to Clear NVD Backlog
NIST has failed to meet its self-imposed deadline of clearing the NVD's backlog by the end of the fiscal year. Meanwhile, CVE's awaiting analysis have increased by 33% since June.
A CLI for scaffolding starter projects.
Prerequisites: Node.js (>=6.x preferred) and npm.
[sudo] npm install -g @w6s/cli
$ w6s clone <template-name> <project-name>
Example:
$ w6s clone webpack-framework7 my-project
The above command pulls the template from workplus-templates/webpack-framework7, prompts for some information, and generates the project at ./my-project/.
$ w6s list
All official project templates are repos in the workplus-templates organization. When a new template is added to the organization, you will be able to run w6s clone <template-name> <project-name>
to use that template. You can also run w6s list
to see all available official templates.
Current available templates include:
$ w6s server
w6s server base on 'http-server', http-server is a simple, zero-configuration command-line http server. It is powerful enough for production usage, but it's simple and hackable enough to be used for testing, local development, and learning.
Available Options:
A template repo must have a template
directory that holds the template files, and may have a metadata file for the template which can be a template.json
file.
{
"name": "webpack-framework7",
"description": "A starter project for using Framework7 with Webpack via Babel!",
"bash": ["npm install", "npm run dev"],
"readme": "https://github.com/workplus-template/webpack-framework7#readme"
}
All files inside template
will be rendered using underscore
, with the prompt results as the data.
Example:
<title><%= name %></title>
npm install
bin/w6s clone <template-name> [project-name]
bin/w6s list
bin/w6s server
MIT
FAQs
@w6s/cli
The npm package @w6s/cli receives a total of 2 weekly downloads. As such, @w6s/cli popularity was classified as not popular.
We found that @w6s/cli demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
NIST has failed to meet its self-imposed deadline of clearing the NVD's backlog by the end of the fiscal year. Meanwhile, CVE's awaiting analysis have increased by 33% since June.
Security News
Cloudflare has launched a setup wizard allowing users to easily create and manage a security.txt file for vulnerability disclosure on their websites.
Security News
The Socket Research team breaks down a malicious npm package targeting the legitimate DOMPurify library. It uses obfuscated code to hide that it is exfiltrating browser and crypto wallet data.