Security News
The Unpaid Backbone of Open Source: Solo Maintainers Face Increasing Security Demands
Solo open source maintainers face burnout and security challenges, with 60% unpaid and 60% considering quitting.
liferay-npm-bundler-plugin-inject-peer-dependencies
Advanced tools
A liferay-npm-bundler plugin to force injection of dependencies in packages declaring peer dependencies.
Inject peer and undeclared dependencies (as long as they are installed under "node_modules") in package.json files.
npm install --save-dev liferay-npm-bundler-plugin-inject-peer-dependencies
Add the following to your .npmbundlerrc
file:
Without options:
{
"*": {
"plugins": ["inject-peer-dependencies"]
}
}
With options:
{
"*": {
"plugins": [
[
"inject-peer-dependencies",
{
"defineCall": "Liferay.Loader.define"
}
]
]
}
}
This plugin injects missing dependencies in package.json
files when they are
found inside AMD define()
calls in any of their module files and the
dependency is installed under "node_modules". This is needed for peer
dependencies to work correctly under Liferay's npm architecture and it may also
make some incorrect setups work they way they do on Node.js.
To determine the version of the dependencies to inject, the plugin resolves the peer/undeclared packages from the context of the module where they are referenced using the standard node resolve algorithm.
Please note that, for the referenced packages to be included they must also be
listed in the project's package.json
so that they are included in the final
OSGi bundle.
FAQs
A liferay-npm-bundler plugin to force injection of dependencies in packages declaring peer dependencies.
The npm package liferay-npm-bundler-plugin-inject-peer-dependencies receives a total of 6,123 weekly downloads. As such, liferay-npm-bundler-plugin-inject-peer-dependencies popularity was classified as popular.
We found that liferay-npm-bundler-plugin-inject-peer-dependencies demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 14 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Solo open source maintainers face burnout and security challenges, with 60% unpaid and 60% considering quitting.
Security News
License exceptions modify the terms of open source licenses, impacting how software can be used, modified, and distributed. Developers should be aware of the legal implications of these exceptions.
Security News
A developer is accusing Tencent of violating the GPL by modifying a Python utility and changing its license to BSD, highlighting the importance of copyleft compliance.