Security News
GitHub Removes Malicious Pull Requests Targeting Open Source Repositories
GitHub removed 27 malicious pull requests attempting to inject harmful code across multiple open source repositories, in another round of low-effort attacks.
create-vibrary
Advanced tools
A published-ready template for components and composable functions library.
A published-ready template for components and composable functions library.
With NPM:
$ npm create vibrary@latest
With Yarn:
$ yarn create vibrary
With PNPM:
$ pnpm create vibrary
Then follow the prompts!
You can also directly specify the project name and the template you want to use via additional command line options. For example, to scaffold a Vite + Vue library, run:
# npm 6.x
npm create vibrary@latest my-vue-library --template vue-ts
# npm 7+, extra double-dash is needed:
npm create vibrary@latest my-vue-library -- --template vue-ts
# yarn
yarn create vibrary my-vue-library -- --template vue-ts
# pnpm
pnpm create vibrary my-vue-library -- --template vue-ts
Currently supported template presets include:
vue-ts
react
Template presets still work in progress:
vanilla
vanilla-ts
vue
react-ts
preact
preact-ts
lit
lit-ts
svelte
svelte-ts
Vibrary
For example, to release a new version of your lib, run:
pnpm release
Then follow the prompts!
If you get an error when running pnpm release
, you maybe miss the git repository url in package.json
, for example, to add git repository url:
// in package.json
{
"repository": {
"type": "git",
"url": "git+https://github.com/your/your-repo-url.git"
}
}
FAQs
A published-ready template for components and composable functions library.
The npm package create-vibrary receives a total of 1 weekly downloads. As such, create-vibrary popularity was classified as not popular.
We found that create-vibrary demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
GitHub removed 27 malicious pull requests attempting to inject harmful code across multiple open source repositories, in another round of low-effort attacks.
Security News
RubyGems.org has added a new "maintainer" role that allows for publishing new versions of gems. This new permission type is aimed at improving security for gem owners and the service overall.
Security News
Node.js will be enforcing stricter semver-major PR policies a month before major releases to enhance stability and ensure reliable release candidates.