New Research: Supply Chain Attack on Axios Pulls Malicious Dependency from npm.Details →
Socket
Book a DemoSign in
Socket
Book a DemoSign in

sprocket

Package Overview
Dependencies
Maintainers
1
Versions
14
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

sprocket

Opinioned, Convention over Configuration asset build tool for any javascript frameworks.

latest
Source
npmnpm
Version
0.4.0
Version published
Weekly downloads
16
1500%
Maintainers
1
Weekly downloads
 
Created
Source

sprocket Travis CI Quality Coverage Dependencies

Opinioned, Convention over Configuration asset build tool for any javascript frameworks.

Version

It's designed for ExpressJS websites, SailsJS websites and even pure-static websites. Pure jQuery site? Or fancy AngularJS Apps? No problem!

The only required dependency is gulpjs. We use gulpfile to build your workflow.

Quick Overview

4 Steps to bring all goodies to your front end development!

1. With your assets files:

2014-06-27 11 58 18

Notice the project structure in the left

2. Specify the dependency in admin.html.ejs (or index.jade):

2014-06-27 12 36 58

3. Running server under development mode:

2014-06-27 11 56 47

4. npm start in production:

2014-06-27 12 34 11

See the example project for these steps.

Convention over Configuration Wins

Usage

It's simple. Go to the APIs page and walk through it.

Docs

Incentive

APIs

Information

Packagesprocket
DescriptionOpinioned, Convention over Configuration asset build tool for any javascript frameworks.
Node Version>= 0.10
Gulp Version>= 3.5.0

Contributing

Help Wanted

devDependency Status

  • Fork it
  • Create your feature branch (git checkout -b my-new-feature)
  • Commit your changes (git commit -am 'Add some feature')
  • Push to the branch (git push origin my-new-feature)
  • Create new Pull Request

Keywords

LiveScript
gulp
sprockets
rails
assets
pipeline

FAQs

Package last updated on 23 Jul 2014

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

Attackers Are Hunting High-Impact Node.js Maintainers in a Coordinated Social Engineering Campaign

Security News

Attackers Are Hunting High-Impact Node.js Maintainers in a Coordinated Social Engineering Campaign

Multiple high-impact npm maintainers confirm they have been targeted in the same social engineering campaign that compromised Axios.

By Sarah Gooding  -  Apr 03, 2026