
Security News
npm Adopts OIDC for Trusted Publishing in CI/CD Workflows
npm now supports Trusted Publishing with OIDC, enabling secure package publishing directly from CI/CD workflows without relying on long-lived tokens.
create-gatsby
Advanced tools
Create Gatsby apps in an interactive CLI experience that does the plumbing for you.
Create Gatsby apps in an interactive CLI experience that does the plumbing for you.
Create a new Gatsby app by running the following command:
npm init gatsby
or
yarn create gatsby
It will ask you questions about what you're building, and set up a Gatsby project for you.
Note: This package is different from gatsby-cli
, it is intended solely to create new sites.
If you'd like to set up a minimal site without answering any prompts you can run the following command, including your chosen site directory.
npm init gatsby -y <site-directory>
If you're making changes to the create-gatsby package, you can follow the steps below to test out your changes locally:
# Move into the monorepo
cd <path-to-gatsby-monorepo>
# Install dependencies and build the package
yarn bootstrap
# Run the create-gatsby script
node packages/create-gatsby/cli.js
Note that if you use the bootstrap
script, you'll have to rebuild after each change. Alternatively, you can use the watch
script to automatically rebuild after local changes:
# Move into the monorepo
cd <path-to-gatsby-monorepo>
# Install dependencies and build the package
yarn bootstrap
# Watch changes
yarn watch --scope=create-gatsby
Open another terminal window and go to a folder where you can easily delete the test projects:
cd <path-to-playground>
# Run the create-gatsby script
node <some-path>/packages/create-gatsby/cli.js
FAQs
Create Gatsby apps in an interactive CLI experience that does the plumbing for you.
The npm package create-gatsby receives a total of 220,748 weekly downloads. As such, create-gatsby popularity was classified as popular.
We found that create-gatsby demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 7 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
npm now supports Trusted Publishing with OIDC, enabling secure package publishing directly from CI/CD workflows without relying on long-lived tokens.
Research
/Security News
A RubyGems malware campaign used 60 malicious packages posing as automation tools to steal credentials from social media and marketing tool users.
Security News
The CNA Scorecard ranks CVE issuers by data completeness, revealing major gaps in patch info and software identifiers across thousands of vulnerabilities.