Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
component-builder
Advanced tools
Component build tool. This is the library that component(1)
utilizes
to perform component builds.
$ npm install component-builder
Creates a new Builder
for the given component's dir
:
var Builder = require('component-builder');
var builder = new Builder('components/visionmedia-page');
The component's component.json contents as an object.
Add "sourceURL" support, wrapping the module functions
in Function()
calls so that browsers may assign a
name to the scripts to aid in debugging.
Append the given dependency lookup path
. This lookup path
is
"global", thus it influences all dependency lookups.
Include development dependencies.
Add a fabricated file of the given type
, filename
,
and contents val
. For example if you were translating
a Stylus file to .css, or a Jade template to .js you may
do something like:
builder.addFile('scripts', 'view.js', 'compiled view js');
Ignore building name
's type
, where type
is "scripts" or "styles". When
no type
is given both are ignored, this includes dependencies of name
as well.
builder.ignore('visionmedia-page')
Perform the build and pass an object to fn(err, obj)
containing
the .css
and .js
properties.
A build "hook" is like an event that lets you manipulate the build in process. For
example you may use a hook to translate coffee script files to javascript automatically,
or compile a template to javascript so that it may be loaded with require()
, or use
CSS pre-processors such as rework.
Available hooks are:
before scripts
before styles
The follow demonstrates the most basic build you can possible do using
this component builder implementation. A root component directory is
passed to new Builder
, followed by a .build()
call which then responds
with a res
object containing the followign properties:
.require
the require implementation script.js
compiled javascript.css
compiled cssvar builder = new Builder('lib/boot');
builder.build(function(err, res){
if (err) throw err;
console.log(res.require + res.js);
console.log(res.css);
});
In the previous example all the application's private components live in ./lib
,
thus if you want to specify dependencies without a leading "lib/"
a lookup path
should be created with .addLookup()
:
var builder = new Builder('lib/boot');
builder.addLookup('lib');
...
MIT
FAQs
builder for component
The npm package component-builder receives a total of 1,344 weekly downloads. As such, component-builder popularity was classified as popular.
We found that component-builder demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 31 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.