Research
PyPI Package Impersonates SymPy to Deliver Cryptomining Malware
Malicious PyPI package sympy-dev targets SymPy users, a Python symbolic math library with 85 million monthly downloads.
By Kirill Boychenko -  Jan 21, 2026
🚀 Launch Week Day 2:Introducing Custom Tabs for Org Alerts.Learn More →
base-bower 
Base plugin that adds methods for programmatically installing bower packages.
Install
Install with npm:
$ npm install base-bower --save
Usage
var bower = require('base-bower');
var Base = require('base');
var app = new Base();
app.use(bower());
// install bower packages `bootstrap` and `moment`
app.bower.saveDev(['bootstrap', 'moment'], function(err) {
if (err) throw err;
});
API
.bower
Execute bower install with the given args, package names and callback.
Params
args{String|Array}names{String|Array}cb{Function}: Callback
Example
app.bower('--save', ['isobject'], function(err) {
if (err) throw err;
});
.bower.install
Execute bower install with one or more package names. Does not save anything to bower.json.
Params
names{String|Array}cb{Function}: Callback
Example
app.bower.install('isobject', function(err) {
if (err) throw err;
});
.bower.latest
Force (re-)install the latest version of all dependencies listed in bower.json.
Params
cb{Function}: Callback
Example
app.bower.latest(function(err) {
if (err) throw err;
});
.bower.save
Execute bower install --save with one or more package names. Updates dependencies in bower.json.
Params
names{String|Array}cb{Function}: Callback
Example
app.bower.save('micromatch', function(err) {
if (err) throw err;
});
.bower.saveDev
Execute bower install --save-dev with one or more package names. Updates devDependencies in bower.json.
Params
names{String|Array}cb{Function}: Callback
Example
app.bower.saveDev('isobject', function(err) {
if (err) throw err;
});
Related projects
You might also be interested in these projects:
- base: base is the foundation for creating modular, unit testable and highly pluggable node.js applications, starting… more | homepage
- base-task: base plugin that provides a very thin wrapper around https://github.com/doowb/composer for adding task methods to… more | homepage
- spawn-commands: Launches a new process with the given command, with command line arguments in
args. Should… more | homepage
Contributing
Pull requests and stars are always welcome. For bugs and feature requests, please create an issue.
Building docs
Generate readme and API documentation with verb:
$ npm install verb && npm run docs
Or, if verb is installed globally:
$ verb
Running tests
Install dev dependencies:
$ npm install -d && npm test
Author
Jon Schlinkert
Follow me on GitHub or Twitter for updates about base-bower and my other libraries:
License
Copyright © 2016, Jon Schlinkert. Released under the MIT license.
This file was generated by verb, v, on April 07, 2016.
FAQs
Base plugin that adds methods for programmatically installing bower packages.
The npm package base-bower receives a total of 2 weekly downloads. As such, base-bower popularity was classified as not popular.
We found that base-bower demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 07 Apr 2016
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Product
Introducing Custom Tabs for Org Alerts
Create and share saved alert views with custom tabs on the org alerts page, making it easier for teams to return to consistent, named filter sets.
By André Staltz -  Jan 20, 2026
Product
Rust Support in Socket Is Now Generally Available
Socket’s Rust and Cargo support is now generally available, providing dependency analysis and supply chain visibility for Rust projects.
By Trevor Norris -  Jan 19, 2026