Security News
Risky Biz Podcast: AI Agents Are Raising the Stakes for Software Supply Chain Security
Open source attacks are accelerating as AI coding agents pull in dependencies faster, with less human review.
By Sarah Gooding - Jun 30, 2026
🚀 Socket Launch Week Day 5:Introducing Repository Access Permissions and Custom Roles.Learn more →
cache-bust-loader
Advanced tools
Cache-Bust Loader
This Webpack loader adds a cache-bust query parameter to referenced files in your source code.
Installation
npm install cache-bust-loader
Usage
Add this to your webpack.config.js to apply the logic to your .css files for example.
Webpack 1
module.exports = {
...
module: {
loaders: [
{ test: /\.css$/, loader: "cache-bust-loader?name=bust&value=ZZxTE!css-loader" }
]
}
...
};
Webpack 2
module.exports = {
...
module: {
rules: [
{ test: /\.css$/, loader: "cache-bust-loader?name=bust&value=ZZxTE!css-loader" }
]
}
...
};
Configuration
The following parameters are possible:
| Parameter | Mandatory | Data type | Default value |
|---|---|---|---|
name | True | String | |
value | False | String | |
types | False | String | eot;woff;woff2;svg;ttf;otf;jpg;jpeg;png;ico;gif;json |
The name describes the name of the query parameter, the value the string which should change every build. If the value is empty, no parameters are applied (e.g. in development mode). The types are filetypes
which you want to be cache-busted. Split them with a semicolon.
License
FAQs
Adds cache-bust query params to referenced files
The npm package cache-bust-loader receives a total of 15 weekly downloads. As such, cache-bust-loader popularity was classified as not popular.
We found that cache-bust-loader demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 09 Dec 2020
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
/Security News
Chrome and Firefox Extensions Posing as Free VPNs Add Clipboard Stealers via Malicious Updates
Malicious Chrome and Firefox extensions posed as free VPNs while stealing clipboard data through later extension updates.
By Kirill Boychenko, Kush Pandya - Jun 29, 2026
Research
/Security News
Miasma Mini Shai-Hulud Hits ImmobiliareLabs npm Packages
Miasma Mini Shai-Hulud hits @immobiliarelabs Backstage plugins, targeting GitLab and LDAP auth packages on npm.
By Socket Research Team - Jun 26, 2026