Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
generator-prototype
Advanced tools
Yeoman generator for Prototype.
Install Yeoman:
npm install -g yo
Install the Generator-Prototype via:
npm install -g generator-prototype
mkdir project && cd project
yo prototype
-s
alias --skip-install
Skips the automatic execution of bower
and npm
after scaffolding has finished.
You can scaffold your project in an instance. The first question is:
"Choose your installation routine"
If you choose "Standard installation" you skip the rest of the questions and get the default values with:
There are standard grunt modules I use. These are:
But you can also apply additional addons and grunt modules to your project. Just choose specific ones:
We use Assemble as template engine. Assemble is a component and static site generator that makes it dead simple to build modular sites, documentation and components from reusable templates and data. You want to know more? Here you go: assemble.io
In your installation routine you can choose specific modules for Assemble:
For our Gruntfile we use the grunt module load-grunt-configs to split the file up in multiple files. These files/tasks you can find in this directory:
The Generator-Prototype supports different features. Just check/uncheck them in the custom installation routine:
You can choose JS Libraries like:
And you can also choose SCSS Frameworks like:
All files will be included and configured. Have fun!
To help you in your workflow, we integrated some sub generators for you:
You forgot a grunt module? y
Others will follow.
Generator-Prototype provides a way to document your assemble modules via markdown and a separate docs folder. Just use the custom installation route and check:
For further informations and instructions see:
FAQs
Scaffold modern frontend web apps with Assemble, Grunt, Sass and Bower. Use modern frameworks like Bourbon, Bootstrap, Foundation and structure the web app with Backbone and RequireJS.
We found that generator-prototype demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.