Security News
PyPI Introduces Digital Attestations to Strengthen Python Package Security
PyPI now supports digital attestations, enhancing security and trust by allowing package maintainers to verify the authenticity of Python packages.
The esm npm package is a lightweight module loader that allows developers to use ES6 modules in Node.js. It enables the use of import and export syntax for working with modules, which is more standardized and often considered cleaner than the traditional CommonJS require syntax.
Import ES6 Modules
Allows the use of ES6 import syntax in Node.js by requiring the esm module and then using it to load other ES6 modules.
require = require('esm')(module)
const { myFunction } = require('./myModule.mjs')
Export ES6 Modules
Enables developers to define modules using ES6 export syntax, which can then be imported by other modules.
// In myModule.mjs
export const myFunction = () => { console.log('Hello ESM!'); }
Dynamic Import
Supports dynamic import() syntax for loading modules asynchronously, which can be useful for code splitting or on-demand loading.
require = require('esm')(module)
const myModule = require('./myModule.mjs')
myModule.then(module => { module.myFunction() })
This package allows you to transpile your ES6+ code on the fly by hooking into Node's require. It is more feature-rich than esm, offering a wide range of plugins to transform your code, but it may be heavier and slower for simple use cases.
While ts-node is primarily for running TypeScript in Node.js without pre-compiling, it also supports ES6+ features. It is similar to esm in that it allows for the use of modern module syntax, but it is specifically tailored for TypeScript.
This package uses esbuild to transpile code when requiring modules. It's similar to esm in that it allows you to use newer syntax, but it also includes TypeScript support and is focused on speed, leveraging the fast esbuild bundler.
A fast, production ready, zero-dependency ES module loader for Node 6+!
See the release post :book: and video :movie_camera: for all the details.
New projects
Run npm init esm
or yarn create esm
.
:bulb: Use the -y
flag to answer “yes” to all prompts.
Existing projects
Run npm i esm
or yarn add esm
.
There are two ways to enable esm
.
Enable esm
for packages:
Use esm
to load the main ES module and export it as CommonJS.
index.js
// Set options as a parameter, environment variable, or rc file.
require = require("esm")(module/*, options*/)
module.exports = require("./main.js")
main.js
// ESM syntax is supported.
export {}
:bulb: These files are automagically created with npm init esm
or yarn create esm
.
Enable esm
for local runs:
node -r esm main.js
:bulb: Omit the filename to enable esm
in the REPL.
The esm
loader bridges the ESM of today to the
ESM of tomorrow.
:clap: By default, :100: percent CJS interoperability is enabled so you can get stuff done fast.
:lock: .mjs
files are limited to basic functionality without support for esm
options.
Out of the box esm
just works, no configuration necessary, and supports:
import
/export
import.meta
import
.mjs
files as ESM--eval
and --print
flags--check
flag (Node 10+)Specify options with one of the following:
"esm"
field in package.json
.esmrc
or .esmrc.json
fileESM_OPTIONS
environment variable.esmrc.js
or .esmrc.mjs
file{ | |||||||||||||||||
"await": | A boolean for top-level | ||||||||||||||||
"cjs": | A boolean or object for toggling CJS features in ESM. Features
| ||||||||||||||||
"force": | A boolean to apply these options to all module loads. | ||||||||||||||||
"mainFields": | An array of fields, e.g. | ||||||||||||||||
"mode": | A string mode:
| ||||||||||||||||
} |
{ | |
"cache": | A boolean for toggling cache creation or cache directory path. |
"debug": | A boolean for unmasking methods and stack traces. |
"sourceMap": | A boolean for including inline source maps. |
} |
Add a “module” field to package.json
with the path to the main ES module.
:bulb: This is automagically done with npm init esm
or yarn create esm
.
Use esmify
with browserify
.
wallaby.js
following their
integration example.The jasmine
test runner does not have a
mechanism to load esm
. However, esm
can load a bootstrap file that
programmaticly runs tests following their
library usage example.
Load esm
before APMs/loaders like
@babel/register
,
newrelic
, and
sqreen
.
Load esm
with the “node-args” options of
Load esm
with “require” options of
ava
,
mocha
,
nodemon
,
nyc
,
qunit
,
tape
,
ts-node
, and
webpack
.
:reminder_ribbon: When using a package’s “require” option remember that,
per Node’s rules, the builtin require
function cannot sideload .mjs
files.
However, with esm
, ES modules can be sideloaded as .js
files or .mjs
files can be loaded with dynamic import
.
FAQs
Tomorrow's ECMAScript modules today!
The npm package esm receives a total of 1,313,076 weekly downloads. As such, esm popularity was classified as popular.
We found that esm demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
PyPI now supports digital attestations, enhancing security and trust by allowing package maintainers to verify the authenticity of Python packages.
Security News
GitHub removed 27 malicious pull requests attempting to inject harmful code across multiple open source repositories, in another round of low-effort attacks.
Security News
RubyGems.org has added a new "maintainer" role that allows for publishing new versions of gems. This new permission type is aimed at improving security for gem owners and the service overall.