Security News
OpenJS: “XZ Utils Cyberattack Likely Not an Isolated Incident”
OpenJS is warning of social engineering takeovers targeting open source projects after receiving a credible attempt on the foundation.
By Sarah Gooding - Apr 17, 2024
esbuild-envfile-plugin
Advanced tools
- Version published
- Maintainers
- 1
- Weekly downloads
- 3,805
- decreased by-23.69%
- Install size
- 67.9 kB
Weekly downloads
Readme
Description:
This package is a plugin for esbuild. When used, it will look for a .env file in the current project file's directory, or any parent, until it finds one. It will combine the found .env variables with the system-wide process.env variables, which can all be used from the project file. It uses the 'dotenv' package to parse the .env file (the package isn't loaded into your project, only into the esbuild script).
Installation:
npm install esbuild esbuild-envfile-plugin dotenv --save-dev
In esbuild script:
const envFilePlugin = require('esbuild-envfile-plugin');
require('esbuild').build({
plugins: [envFilePlugin]
});
Usage in project:
import { SOME_ENV_VARIABLE } from 'env';
// or:
import * as env from 'env';
//env.SOME_ENV_VARIABLE;
Example esbuild script:
// Config: relative to where npm command is run:
const APP_BASE = 'src';
const ENTRY_FILE = 'index.ts';
const OUTPUT_DIR = 'build';
const OUTPUT_FILE = 'app.js';
const IS_DEV = true;
const TARGET = 'es2018';
function build(entryFile, outFile) {
require('esbuild').build({
entryPoints: [entryFile],
outfile: outFile,
platform: 'node',
bundle: true,
define: { "process.env.NODE_ENV": IS_DEV ? "\"development\"" : "\"product\"" },
target: TARGET,
logLevel: 'silent'
plugins: [envFilePlugin] // <**************** USAGE ****************
})
.then(r => { console.log("Build succeeded.") })
.catch((e) => {
console.log("Error building:", e.message);
process.exit(1)
})
}
build(`${APP_BASE}/${ENTRY_FILE}`, `${OUTPUT_DIR}/${OUTPUT_FILE}`);
FAQs
esbuild plugin to load a .env file from the current directory or any parent. It will combine the environment variables with existing/system-wide process.env variables.
The npm package esbuild-envfile-plugin receives a total of 3,173 weekly downloads. As such, esbuild-envfile-plugin popularity was classified as popular.
We found that esbuild-envfile-plugin demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Last updated on 22 Nov 2022
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Company News
Connect with Socket at RSA and BSidesSF 2024
Come meet the Socket team at BSidesSF and RSA! We're sponsoring several fun networking events and we would love to see you there.
By Sarah Gooding - Apr 15, 2024
Security News
OSI to Lead Discussions on Navigating the Challenges of Doing Business with Open Source
OSI is starting a conversation aimed at removing the excuse of the SaaS loophole for companies navigating licensing and the complexities of doing business with open source.
By Sarah Gooding - Apr 12, 2024