
Research
/Security News
11 Malicious NuGet Tools Pose as Game Cheats to Drop a Windows Host-Surveillance Payload
11 malicious NuGet tools pose as game cheats to deploy Windows payloads, track hosts, and use Google Sheets for telemetry and control.
esbuild-coffeescript-rails
Advanced tools
This plugin lets you import CoffeeScript files when bundling with Esbuild
$ npm install --save-dev esbuild-coffeescript-rails
main.coffee
answer = 42
console.log("the answer is #{answer}")
build.js
const coffeeScriptPlugin = require('esbuild-coffeescript');
require('esbuild').build({
entryPoints: ['main.coffee'],
bundle: true,
outfile: 'out.js',
plugins: [coffeeScriptPlugin()],
});
An object containing configuration options may be passed into the plugin constructor coffeeScriptPlugin
coffeeScriptPlugin({
bare: true,
});
The following options are available:
options.inlineMap, boolean: if true, output the source map as a base64-encoded string in a comment at the bottom.options.filename, string: the filename to use for the source map. It can include a path (relative or absolute).options.bare, boolean: if true, output without the top-level function safety wrapper.options.header, boolean: if true, output the Generated by CoffeeScript header.options.transpile, object: if set, this must be an object with the options to pass to Babel. See Transpilation.options.ast, boolean: if true, return an abstract syntax tree of the input CoffeeScript source code.While it might seem like it, coffeescript is still downloaded over 1.6 million times every week. Coffeescript is still actively used and widespread, and this plugin provides a great way for these projects to leverage the great esbuild tooling.
FAQs
Esbuild for Coffeescript with Rails Sprockets
The npm package esbuild-coffeescript-rails receives a total of 16 weekly downloads. As such, esbuild-coffeescript-rails popularity was classified as not popular.
We found that esbuild-coffeescript-rails demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Research
/Security News
11 malicious NuGet tools pose as game cheats to deploy Windows payloads, track hosts, and use Google Sheets for telemetry and control.

Research
/Security News
4 compromised asyncapi packages deliver miasma botnet loader on macOS, Linux and Windows.

Research
/Security News
A compromised jscrambler npm release added a malicious preinstall hook that runs hidden native binaries on Linux, macOS, and Windows.