Research
Security News
Malicious npm Package Targets Solana Developers and Hijacks Funds
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
express-generator-typescript
Advanced tools
Generate new Express applications similar to express-generate which but sets it up to use TypeScript instead
Express with TypeScript's application generator.
Creates a new express application similar to the express-generator module. Except this new application is configured to use TypeScript instead of plain JavaScript.
This project complies with Typescript best practices listed here.
NodeJS is great for the rapid development of web-projects, but is often neglected because of the lack of type safety. TypeScript solves this issue and (along with its linter file) can even make your code more robust than some other static languages like Java.
There are some other tools out there to generate express apps with TypeScript such as express-generator-ts, but these either haven't been updated in a while or install a lot of junk in your project (such as an ORM).
Due to the heavy use of single-page-applications, no view-engine is configured by default. Express is only setup with the minimal settings for calling APIs and serving an index.html file. All the tools you need to run for development (while restarting on changes), building, testing, and running for production are packaged with this library.
In addition, relative paths are also setup, so you don't have to go through the trouble of installing
and configuring tsconfig-paths and module-alias. Just make sure to update paths
in tsconfig.json
and _moduleAliases
in preload.js if you want to add/edit the relative paths.
When you run express-generator-typescript, it sets up a simple application with routes for adding, updating, deleting, and fetching user objects. This is just to demonstrate how routing is done with express.
If you want a fully-secure application, you can pass the --with-auth
option and you will have an application which requires you to login before calling APIs on user objects. The app is configured with production quality client-side security and uses signed-cookies and jsonwebtokens to store user-session data. If you're new to web-development and still learning about securing websites, I highly encourage to use this option.
$ Just use 'npx'
Or
$ npm install -g express-generator-typescript
The quickest way to get started is use npx and pass in the name of the project you want to create.
If you don't specify a project name, the default express-gen-ts will be used instead. If you
want to use yarn
instead of npm
, pass the option --use-yarn
.
Create the app:
With no options: $ npx express-generator-typescript
With all options (order doesn't matter): $ npx express-generator-typescript --with-auth --use-yarn "project name"
Start your express-generator-typescript app in development mode at http://localhost:3000/
:
$ cd "project name" && npm run dev
npm run dev
.npm test
.npm test -- --testFile="name of test file" (i.e. --testFile=Users)
.npm run lint
.npm run build
.npm start
.During development, express-generator-typescript uses nodemon
to restart the server when changes
are detected. If you want to enable debugging for node, you'll need to modify the nodemon configurations.
This is located under nodemonConfig:
in package.json
for the server and ./spec/nodemon.json
for
unit-testing. For the exec
property, replace ts-node
with node --inspect -r ts-node/register
.
If you are on Windows, the bcrypt
module tends to be fussy. To use this module on Windows you
need to make sure you have the node Windows build tools installed. I don't want to post instructions
because they might change frequently. I would search the Microsoft docs on how to setup Node for Windows.
To be able to debug in VSCODE on windows I also had to install the node-gyp
module globally as well.
Happy web deving :)
FAQs
Generate new Express applications similar to express-generate which but sets it up to use TypeScript instead
The npm package express-generator-typescript receives a total of 744 weekly downloads. As such, express-generator-typescript popularity was classified as not popular.
We found that express-generator-typescript demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
Security News
Research
Socket researchers have discovered malicious npm packages targeting crypto developers, stealing credentials and wallet data using spyware delivered through typosquats of popular cryptographic libraries.
Security News
Socket's package search now displays weekly downloads for npm packages, helping developers quickly assess popularity and make more informed decisions.