Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
desplega-create-react-app
Advanced tools
Desplega module to deploy a react app to a genearal porpuse virtual server.
This is a prebuilt deplega configuration to deploy an app generated with create react app. Using the branch master of the repository that holds your react app.
npm install --save-dev desplega-create-react-app
yarn add --dev desplega-create-react-app
Just create a desplega file in your proyect's root directory. This asumes you have configured a remote server to authenticate with your public key and a username in the sudoers group.
//.desplega.js
const desplegaCreateReactApp = require("desplega-create-react-app");
module.exports = desplegaCreateReactApp({
host: "yourdomain.com | your:IP",
username: "deploy",
deployTo: "apps/react-app",
branchName: "master",
repoUrl: "https://github.com/yourusername/yourreactapp",
limitReleaseCount: 5,
withNginx: true,
serverName: "react-app.yourdomain.com",
asDefault: true
});
Remote server to connect and deploy your app
User name to connect in the remote server
Where to put the files of your app
Source branch to use
Repository to clone and process
You can cache older version of the deployed apps just in case.
Installs and configure nginx to serve your app
Configure the nginx virtual server to leasen to this domain | ip
if true it unlinks the default nginx conf file and set the app server as the default server
FAQs
Desplega module to deploy a react app to a genearal porpuse virtual server.
We found that desplega-create-react-app demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.