Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
create-typescript-library
Advanced tools
This is a nodejs command line util that will setup the basic structure for my (and your) next typescript library.
Simply run npx create-typescript-library
in an empty directory where you want to create your typescript library. If you are using yarn
, run yarn exec create-typescript-library
.
create-typescript-library
will run an interactive prompt to gather information from you, and generate a basic working typescript library for you. Some examples include:
tsc
) to compile your library:
npm
/yarn
scripts for easy build
dev
to compile or bundle codedev:watch
to watch the file changes (by nodemon) and run the dev
scriptbuild
to generate minimized code for publishingtest
to run test against bundle results, library and demoInspired by the awesome blog post Compiling and bundling TypeScript libraries with Webpack by Marco Botto
FAQs
nodejs executable for creating typescript library
The npm package create-typescript-library receives a total of 1 weekly downloads. As such, create-typescript-library popularity was classified as not popular.
We found that create-typescript-library demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.