
Security News
Risky Biz Podcast: AI Agents Are Raising the Stakes for Software Supply Chain Security
Open source attacks are accelerating as AI coding agents pull in dependencies faster, with less human review.
Not meer another f2e build tool.

npm install -g Gon
Creates a new project, generates all the folders and files.
Starts the proxy server and the project, with javascript, stylus and pug files processed by Webpack and Gulp.
Should be used with sudo, because the proxy server runs on port 80.
Releases all the static files to the static folder and all template files to the view folder.

The module file which will be imported (stylus) or required (js) to the entry file should be named start with the _ prefix.
// gon.config.js
module.exports = {
domain: 'gon.com',
port: 8000,
// web server
// request to the upper domain will be proxyed to these servers
fe: {
local: '127.0.0.1:8000',
dev: '',
pre: '',
pro: '',
},
// api server
// requests to `/api` will be prxoyed to these servers
be: {
dev: '127.0.0.1:80',
pre: '',
pro: '',
},
proxy: {
// proxy a project's request to an outiside server
'/data/sk/101010100.html': 'www.weather.com.cn:80',
// proxy an outside request to project
'2pmh9.free.natapp.cc': '/ping',
},
// used for webpack to avoid compiling these files
externals: {
react: 'React',
'react-dom': 'ReactDOM',
},
}
You can switch all these proxy setting on http://localhost/.

Most thanks to Webpack2.0rc and Gulp4.
FAQs
Not meer another f2e build tool
The npm package Gon receives a total of 15 weekly downloads. As such, Gon popularity was classified as not popular.
We found that Gon demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Security News
Open source attacks are accelerating as AI coding agents pull in dependencies faster, with less human review.

Research
/Security News
Malicious Chrome and Firefox extensions posed as free VPNs while stealing clipboard data through later extension updates.

Research
/Security News
Miasma Mini Shai-Hulud hits @immobiliarelabs Backstage plugins, targeting GitLab and LDAP auth packages on npm.