
Security News
Open Source Maintainers Demand Ability to Block Copilot-Generated Issues and PRs
Open source maintainers are urging GitHub to let them block Copilot from submitting AI-generated issues and pull requests to their repositories.
esbuild-plugin-import-map
Advanced tools
ESbuild plugin to apply import map mappings to ESM a head of time.
ESBuild plugin to apply import map mapping to ECMAScript modules (ESM) ahead of time.
$ npm install esbuild-plugin-import-map
import * as importMap from "esbuild-plugin-import-map";
importMap.load({
imports: {
'lit-element': 'https://cdn.eik.dev/lit-element/v2'
}
});
esbuild.build({
entryPoints: ['source/main.js'],
bundle: true,
format: 'esm',
minify: false,
sourcemap: false,
target: ['chrome58', 'firefox57', 'safari11', 'edge16'],
plugins: [importMap.plugin()],
outfile: 'out.js',
}).catch(() => process.exit(1))
This plugin transforms import specifiers in ESM based on mappings defined in one or more import maps. Import maps are an emerging specification yet to be implemented in browsers, however this module can be used to apply import maps ahead of time.
One use case for import maps is to transform ESM bare import statements to an import statement which is an absolute URL to the same module on a CDN.
Lets say we have the following in our ESM when developing locally with node.js:
import {html, render} from 'lit-html';
Then on build we can apply the following import map:
{
"imports": {
"lit-html": "https://cdn.eik.dev/npm/lit-html/v1/lit-html.js",
}
}
When applied, our output wil be:
import * as lit from 'https://cdn.eik.dev/npm/lit-html/v1/lit-html.js'
This module has the following API:
Loads a single or an array of import maps to be applied during build.
One import map:
import * as importMap from "esbuild-plugin-import-map";
importMap.load({
imports: {
'lit-element': 'https://cdn.eik.dev/lit-element/v2'
}
});
Array of import maps:
import * as importMap from "esbuild-plugin-import-map";
importMap.load([
{ ... },
{ ... },
{ ... },
]);
When an array of import maps is provided and multiple import maps use the same import specifier, the last import specifier in the array will be the one which is applied.
Returns the plugin which will apply the loaded import maps during build. The returned plugin should be appended to the ESBuild plugin array.
import * as importMap from "esbuild-plugin-import-map";
esbuild.build({
entryPoints: ['source/main.js'],
bundle: true,
format: 'esm',
minify: false,
sourcemap: false,
target: ['chrome58', 'firefox57', 'safari11', 'edge16'],
plugins: [importMap.plugin()],
outfile: 'out.js',
}).catch(() => process.exit(1))
Clears the loaded import maps from the plugins internal cache.
Copyright (c) 2020 Trygve Lie
Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions:
The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software.
THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
FAQs
ESbuild plugin to apply import map mappings to ESM a head of time.
The npm package esbuild-plugin-import-map receives a total of 619 weekly downloads. As such, esbuild-plugin-import-map popularity was classified as not popular.
We found that esbuild-plugin-import-map demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Open source maintainers are urging GitHub to let them block Copilot from submitting AI-generated issues and pull requests to their repositories.
Research
Security News
Malicious Koishi plugin silently exfiltrates messages with hex strings to a hardcoded QQ account, exposing secrets in chatbots across platforms.
Research
Security News
Malicious PyPI checkers validate stolen emails against TikTok and Instagram APIs, enabling targeted account attacks and dark web credential sales.