
Security News
pnpm 11.10 Hardens Registry Authentication to Block Token Redirection
pnpm 11.10 hardens registry auth to block token redirection, tightens pack-app and deploy, and makes the Rust port (v12) installable.
py-components
Advanced tools
基于 element 2.13.1 版本
查看 package.json npm scripts
"serve:examples": "vue-cli-service serve"
使用 serve:examples 命令运行 examples 目录下代码
"commit": "git-cz"
使用 git-cz 提交标准格式的 git message 信息,易于查看历史修改
详细配置在根目录.cz-config 内配置
"pord:build": "npm run build:lib && npm run build:components && npm run build:style && npm run build:icon"
pord:build 会依次运行子命令 分别 build 组件、样式与图标
"release": "npm run pord:build && standard-version",
release 命令运行 build 命令之后使用 standard-version 自动打版本号和 git tag
执行完 npm run release命令后执行git push --follow-tags origin master 推送tag
执行npm publish 推送到npm
FAQs
基于 element 2.13.1 版本
The npm package py-components receives a total of 5 weekly downloads. As such, py-components popularity was classified as not popular.
We found that py-components demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Security News
pnpm 11.10 hardens registry auth to block token redirection, tightens pack-app and deploy, and makes the Rust port (v12) installable.

Security News
/Research
Socket uncovered 17 malicious npm and PyPI packages typosquatting Paysafe, Skrill, and Neteller SDKs to steal developer secrets.

Security News
Node.js is debating whether AI-driven security report volume warrants moving more vulnerability reports into public workflows.