
Security News
OpenGrep Restores Fingerprinting in JSON and SARIF Outputs
OpenGrep has restored fingerprint and metavariable support in JSON and SARIF outputs, making static analysis more effective for CI/CD security automation.
Little helper to make node.js require
relative to your project root
When working on a node.js project with subfolders you might find it difficult to remember the correct relative path to include a common module or library which is not published on npm.
Using this module you just need to remember your own project directory structure and make all require
absolute to the project root directory
npm install rootpath
BEFORE
// from $HOME_PROJECT/lib/math/
var myLib = require('../myLibrary');
var myUtils = require('../../utils/myUtils');
var myTest = require('../../test/myTest');
AFTER
// from $HOME_PROJECT/lib/math/
require('rootpath')();
var myLib = require('lib/myLibrary');
var myUtils = require('utils/myUtils');
var myTest = require('test/myTest');
Forks and pull requests are welcome. There is always a better way of achieving a goal. This project will benefit from the contribution of the community.
npm test
MIT
FAQs
Little helper to make node.js require relative to your project root
The npm package rootpath receives a total of 416,452 weekly downloads. As such, rootpath popularity was classified as popular.
We found that rootpath demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
OpenGrep has restored fingerprint and metavariable support in JSON and SARIF outputs, making static analysis more effective for CI/CD security automation.
Security News
Security experts warn that recent classification changes obscure the true scope of the NVD backlog as CVE volume hits all-time highs.
Security Fundamentals
Attackers use obfuscation to hide malware in open source packages. Learn how to spot these techniques across npm, PyPI, Maven, and more.