Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
@zohodesk/client_build_tool
Advanced tools
This is a build tool for react based web applications.
Supported and Tested Environment
Name | Version |
---|---|
node | v18.11.0 |
npm | 8.19.2 |
OS : Mac , ubuntu
A CLI tool for build modern web application and libraries
Below Steps:-
npm i -g @zohodesk/client_build_tool
cbt template app <your-project-folder> && cd <your-project-folder>
Now to run app
npm run start
Happy Code :>) 🤟
CBT is a powerful client-side build tool designed to streamline and optimize your development workflow. With CBT, you can effortlessly manage and configure your project's build process, automating tasks, and improving efficiency. It provides an intuitive interface and a comprehensive set of features to simplify the build pipeline, allowing you to focus more on coding and less on tedious configuration.
With CBT, you can optimize your client-side development workflow, increase productivity, and deliver high-quality applications faster. Start using CBT today and experience the power of efficient and streamlined client-side builds.
The following commands are available options for the cbt
(Client Build Tool) CLI. You can execute these commands by prefixing them with cbt
. For example, cbt start
.
preProcessor: Runs the preProcessor.js in the app to set the variables before the build or run the dev mode.
start: Starts the development server with mode support. You can specify the mode as either dev
or prod
. This command is used for local development and testing.
build: Executes the build command with mode support. You can specify the mode as either dev
or prod
. This command compiles and bundles your application for deployment.
build:lib: Transpile the src
folder to the lib
folder, generating CommonJS modules. This command is specifically designed for building libraries that require CommonJS module format.
build:es: Transpile the src
folder to the es
folder, generating modules using import statements. This command is useful for building libraries that use ECMAScript module syntax.
version: Prints the version of the CBT CLI tool.
template: Creates an initial template or skeleton for your project. You can specify the option as app
. This command sets up a basic project structure and configuration files to get you started quickly.
mock:server: Starts an external mock API server. This command enables you to run a separate server specifically for mocking API responses during development and testing.
Note: Make sure to replace
start
in the examples above with the actual command or script that you use to run the Client Build Tool CLI.
These commands provide flexibility and control over your client-side build process, allowing you to start the development server, build your application, transpile libraries, create templates, run a mock API server, and more.
For more Details
Feature:-
stats > enable
or cli flags enable_stats
.resourceHints
=> allowPrefetchingMultipleChunks
as true
app
=> customChunksBaseConfig
as objectChange:-
Changes:--
Changes:--
devtool
default value changed from hidden-cheap-source-map
to source-map
Issue Fix:--
Features:-
devModeContentHashAllowedTypes
support added for some project there will be a need for hash even though they run dev mode. for details details
devLikeHash
support for disable content hash for file names in production mode. for details details
disableReactDevWarning
disable react dev warning such as prop-type warnings will be removed in dev mode build or server. for details details can be enabled via --disable_react_dev_warning
too.
statsLogConfig
support to customize default webpack log after build finished. for details details can be enabled via --disable_react_dev_warning
too.
enableChunkHash
renamed as enableFileNameHashing
pre_processor
command to run the preprocessor.js file.preProcessor runs in build, start, buildEs, buildLib commands bu default. and we have watch mode support as well with the option (-w
)
createSeparateSmap
flag source_map_enable
renamed as enable_smap
removeAttribute
option changes as babelCustomizations.removeAttribute
removePropTypes
support for remove the prop types package in the output build.
devConsoleExclude
support for remove the console statements such as console.log, console.warn in the output build.
manifestJson
default value set as false.
customAttributes
support for add attributes to html, link , script tag in the output build.
First Release Features:-
FAQs
A CLI tool to build web applications and client libraries
The npm package @zohodesk/client_build_tool receives a total of 0 weekly downloads. As such, @zohodesk/client_build_tool popularity was classified as not popular.
We found that @zohodesk/client_build_tool demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 33 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.