Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
electron-reloader
Advanced tools
Simple auto-reloading for Electron apps during development
It just works. When files used in the main process are changed, the app is restarted, and when files used in the browser window are changed, the page is reloaded.
Note that it will not work correctly if you transpile the main process JS files of your app, but it doesn't make sense to do that anyway.
npm install --save-dev electron-reloader
Requires Electron 5 or later.
The following must be included in the app entry file, usually named index.js
:
try {
require('electron-reloader')(module);
} catch {}
You have to pass the module
object so we can read the module graph and figure out which files belong to the main process.
The try/catch
is needed so it doesn't throw Cannot find module 'electron-reloader'
in production.
Type: object
The global module
object.
Type: object
Type: Array<string | RegExp>
Ignore patterns passed to chokidar
.
By default, files/directories starting with a .
, .map
files, and node_modules
directories are ignored. This option is additive to those.
Type: boolean
Default: true
Watch files used in the renderer process and reload the window when they change.
Setting this to false
can be useful if you use a different reload strategy in the rendererer process, like HMR
.
Type: boolean
Default: false
Prints watched paths and when files change.
Can be useful to make sure you set it up correctly.
Just add the source directory to the ignore
option. The dist directory is already watched, so when a source file changes, webpack will build it and output it to the dist directory, which this module will detect.
FAQs
Simple auto-reloading for Electron apps during development
We found that electron-reloader demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.