Security News
The Push to Ban Ransom Payments Is Gaining Momentum
Ransomware costs victims an estimated $30 billion per year and has gotten so out of control that global support for banning payments is gaining momentum.
foso-cdn
Advanced tools
Readme
A webservice that dishes out files from npm packages.
Inspired by npm-cdn, wzrd.in, brcdn.org and jsdelivr.
$ git clone https://github.com/fosojs/cdn.git && cd ./cdn
$ npm install
$ node app
To access a file inside a published npm package, use the following pattern:
http://cdn.foso.me/raw/{packageName}@{packageVersion}/{filePath}
Examples:
When a package is downloaded, index files are generated in HTML and JSON format.
Any npm package can be loaded through the /bundle/{bundleRoute}
endpoint.
The bundleRoute
should end either with .js
or .css
and should contain a list
of one or more packageRoutes
. For example, /bundle/foo,bar,baz.js
will return a JavaScript file that is a
concatenation of the latest versions of foo
, bar
, baz
.
Sometimes it might be necessary to load a specific version of a package. In order to do so, it is
possible to specify the version of the package after a @
character. For example,
/bundle/foo@4.2.13,bar@3,baz.js
will return the 4.2.13
's version of foo
,
the latest version of the 3
rd major version of bar
and the latest version of
baz
.
By default, the main file of the package is loaded (the path to the main file is stored in the "main"
field for js and in the "style"
field for css, in the package.json
file). However, it is possible to
load any file of a package by specifying the path to it. E.g., to load the collection/pluck.js
file of the lodash package, this URL can be used: /bundle/lodash@3.10.1(collection/pluck).js.
It is also possible to load several files from a package: /bundle/lodash@3.10.1(array/fill+collection/pluck).js.
It is possible to minify the resources by adding .min
to the end of their path. For instance:
The MIT License (MIT)
FAQs
A webservice that dishes out files from npm packages.
We found that foso-cdn demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Ransomware costs victims an estimated $30 billion per year and has gotten so out of control that global support for banning payments is gaining momentum.
Application Security
New SEC disclosure rules aim to enforce timely cyber incident reporting, but fear of job loss and inadequate resources lead to significant underreporting.
Security News
The Python Software Foundation has secured a 5-year sponsorship from Fastly that supports PSF's activities and events, most notably the security and reliability of the Python Package Index (PyPI).