Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
generator-testdrivedemo
Advanced tools
This generator is used to assure the a common style guide for the TestDrive demos.
First of all, you will need node on your computer. Go to http://nodejs.org/ and install the version for your OS. Make sure that the option to add to PATH is selected!
Once this is done, from a prompt type the following:
npm install -g eslint
npm install -g jscs
npm install -g csslint
npm install -g yo
npm install -g http-server
npm install -g generator-testdrivedemo
You will also need a code editor. Something like Visual Studio, Brackets, Sublime, Atom, WebStorm or even notepad if you want.
Make a fork of the TestDrive demos project and clone it into your computer. Then create now a folder where your new demo is going to be and from a command prompt in that folder, type the following:
yo testdrivedemo
A wizard will start asking you a series of questions to prepare your demo:
Once you've answered all the questions it will create the right folder structure to be integrated into the demo repository.
The yeoman generator will also add a few files required by eslint, jscs and csslint. Before submitting any pull request make sure that you pass clean eslint and jscs (csslint not that much, it doesn't have as many rules as we want or isn't as flexible).
To verify it works just type the following from a command prompt in the root of your demo folder:
eslint .\scripts\myjsfile.js
jscs .\scripts\myjsfile.js
You should not get any warning and if you do you should fix it. There are in some cases when a rule has to be broken (e.g. parsing an external JSON file that uses underscores in the name of the files). If that rule has to be broken you can dissable the warning the following way:
/* eslint-disable nameOfTheRule */
mycodehere
/* eslint-enable nameOfTheRule */
/* jscs:disable nameOfTheRule */
mycodehere
/* jscs:enable nameOfTheRule */
To know more about each rule I recommend you to visit the documentation of each project: ESLint, JSCS
FAQs
TestDrive demo generator for yeoman
The npm package generator-testdrivedemo receives a total of 1 weekly downloads. As such, generator-testdrivedemo popularity was classified as not popular.
We found that generator-testdrivedemo demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.