Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
A compilation tools for FE, built with webpack4.x, compile faster and smart, make work easier.
A tool built with webapck to solve problems in front-end engineering. It support build Vue project and H5 project. React project is coming...
clone && cd easyify
npm i #or yarn install
├── README.md # readme
├── build # build library
├── dist # distribution folder
├── easyify.png # logo
├── jsconfig.json
├── package-lock.json
├── package.json
└── src # source code folder
You need
easyify-cli
to create a new project quickly.You can also build the project manually, but it must conform to the folder structure.
npm i -g easyify-cli
cd <easyifyPath>/src
easyify init <template> <projectName>
# template list web / vuejs
easyify list # View avialable templates
easyify help # View help
change dirctory to project, config.js
in this folder.
{
env: { // Environmental variable, can used by `process.env.NODE_ENV` `process.env.API`
prod: {
NODE_ENV: '"production"',
API: ''
},
dev: {
NODE_ENV: '"development"',
API: ''
},
alpha: {
NODE_ENV: '"production"',
API: ''
}
},
vendor:[
], // dll lib array
vue: false // is vue
multi: false
}
npm run help
Usage: npm run <command> -- <options>
egs:
npm run server -- --type=h5 --project=test --env=dev --multi=true
npm run server:multi -- --type=h5 --project=test
Options:
-V, --version output the version number
-P, --project project name that will be operated.
-E, --env project compilation environment.default:dev, [prod/alpha/dev]
-G, --gzip build application use gizp compress
-h, --help output usage information
Commands:
dll dll bundle
server development mode -- sigle-page
server:multi development mode -- multi-page
build packaged project, env prod. -- sigle-page
build:multi packaged project, env prod. -- multi-page
deploy:cli deploy dist to s3. "npm run deploy:cli <profileName> <sourcePaht> <S3Path>"
help [cmd] display help for [cmd]
npm run dll <options>
npm run server <options>
npm run build <options>
git clone <easyify repo path>
cd src
easyify init web h5-test
...
# open h5-test use your code tool
# edit config.js if necessary
# if need dll bundle
# npm run dll -- -P=h5-test
npm run dll -- -P=h5-test
npm run server -- -P=h5-test
npm run build -- -P=h5-test
or
npm run build -- -P=h5-test -E=alpha
install AWSCLI, Configuration and Credential Files AWACLI document
npm run deploy:cli <profileName> <sourcePath> <s3Path>
npm run deploy:cli cdn ./dist/vue-multi/ s3://shareit.cdn.app/w/test/
# run commend: aws --profile cdn s3 sync ./dist/vue-multi/ s3://shareit.cdn.app/w/test/ --delete --exclude=".*"
# sync success to s3://shareit.cdn.app/w/test/
easyify document easyify template easyify-cli
FAQs
A compilation tools & workflow for FE, built with webpack4.x, compile faster and smart, make work easier.
The npm package easyify receives a total of 0 weekly downloads. As such, easyify popularity was classified as not popular.
We found that easyify demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.