Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
grunt-contrib
Advanced tools
A collection of general use grunt tasks. All tasks are designed with cross platform support in mind and dependencies that can easily be managed through npm.
Install this grunt plugin next to your project's grunt.js gruntfile with: npm install grunt-contrib
Then add this line to your project's grunt.js
gruntfile:
grunt.loadNpmTasks('grunt-contrib');
bump
(not released)Bump package version.
clean
Clear files and folders.
coffee
Compile CoffeeScript files into JavaScript.
compress
Compress files and folders using gzip or zip.
copy
Copy files into another directory.
handlebars
Compile handlebars templates to JST file.
jade
Compile Jade templates to HTML.
jst
Compile underscore templates to JST file.
less
Compile LESS files to CSS.
mincss
Minify CSS files.
requirejs
Optimize RequireJS projects using r.js.
stylus
Compile Stylus files into CSS. Preloaded with nib.
yuidoc
Compile YUIDoc Documentation.
Help us squash them by submitting an issue that describes how you encountered it; please be as specific as possible including operating system, node, grunt, and grunt-contrib versions.
master
, unless otherwise instructed.git rebase
).npm install
grunt
at root of projectvar
, no multiple declarationstest/grunt.js
Currently, testing with grunt is a bit cumbersome--this will be addressed in a future release.
npm install grunt -g
npm install
npm test
See CHANGELOG for release history.
FAQs
The entire grunt-contrib suite.
The npm package grunt-contrib receives a total of 97 weekly downloads. As such, grunt-contrib popularity was classified as not popular.
We found that grunt-contrib demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 6 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.