Research
Security News
Malicious npm Package Targets Solana Developers and Hijacks Funds
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
By Socket Research Team - Dec 02, 2024
Huge News!Announcing our $40M Series B led by Abstract Ventures.Learn More →
starch
- 1.3.4
- Rubygems
Starch
Starch is an opinionated skeleton generator for basic static site development. It will get you going on new sites quickly by generating the meat and potatoes of your toolchain. Starch gets you:
- A simple directory structure
- Barebones
bower.jsonandpackage.jsonfiles for easily saving bower and npm dependencies - Templates, partials, and helpers via Handlebars
- PNG, JPG, and GIF optimization
- SASS compilation
- JS uglification
- Coffeescript compilation
- A preview server with livereload
- The ability to build a production-ready version of your site
Prerequisites
- NodeJS with
npm
Installation
$ gem install starch
Usage
To scaffold a new site named mysite:
$ starch new mysite
Starch will create a directory mysite within the current directory that looks
like this:
├── Gruntfile.js
├── app
│ ├── assets
│ │ ├── files
│ │ ├── fonts
│ │ ├── images
│ │ ├── js
│ │ └── stylesheets
│ │ └── main.scss
│ ├── helpers.js
│ ├── pages
│ ├── partials
│ └── templates
│ └── default.hbt
├── bower.json
├── node_modules
│ └── ...
└── package.json
- Your site's HTML files should live in
app/assets/pages/with.htmlextensions.- These files will be parsed with Handlebars.
- You can include a YAML block (in between two lines of
---) at the top of the file with frontmatter. The data provided here will be available in the file and in the file's template, via thepageobject.
- Partials should live in
app/assets/partials/with.hbpextensions.- You can use partials in your HTML files and in your templates in standard
Handlebars fashion (
{{> my-partial-name}}).- If you want to use a partial that is deeply nested, you don't need to specify the path - just use the partial's name.
- You can use partials in your HTML files and in your templates in standard
Handlebars fashion (
- Templates should live in
app/assets/templates/with.hbtextensions.default.hbtis the default template and needs to exist, otherwise you're gonna have a bad time.- You can change the template that a given
.htmlfile uses by specifyingtemplate: some-template-namein the file's frontmatter. - Use
{{{body}}}in your templates where the HTML should be rendered.
- Any Handlebars helpers can live in
app/helpers.js. In the exported object, each key/value pair should resemblehelperName: function(value) { ... }. - Javascript and Coffeescript should live in
app/assets/js/.- Javascript files should have a
.jsextension and Coffeescript files should have a.coffeeextension.
- Javascript files should have a
- SASS should live in
app/assets/stylesheets/.- The only SASS file that will be compiled is
app/assets/stylesheets/main.scss. This file should be used to import the rest of your SASS.
- The only SASS file that will be compiled is
- Images in
app/assets/images/with.png,.jpg, or.gifextensions will be optimized and copied 1:1 into the destination directory. - Fonts, and any other static assets should live in
fontsandfiles(located inapp/assets), respectively. These files will be copied 1:1 without any additional processing.
When your site is staged or built, the assets directory will be placed in the
root of the destination directory, alongside the rendered contents of the
pages directory. For example, app/pages/index.html will end up as
/index.html, and you can reference assets in your site like:
/assets/images/spuds.png.
Grunt tasks - staging, building, cleaning
The entirety of the Starch toolchain is accessible through Grunt. There are quite a few tasks defined in the Gruntfile, but there are only three that you should really care about:
grunt serve: Builds your site for staging and starts a preview server onhttp://0.0.0.0:8000.livereloadis enabled, so any time theappdirectory changes, the site will be automatically refreshed in your browser. Neat!grunt build: Builds your site for production into thepublic_htmldirectory.grunt clean: Nukes thestagingandpublic_htmldirectories. You can be more specific withgrunt clean:stagingandgrunt clean:build, respectively.
It's just a scaffolder
Starch is meant to provide a solid starting point for new projects; however, it may not always meet your particular needs. You're encouraged to modify the generated Gruntfile (or anything else) to meet the requirements of your project.
Contributing
- Fork it ( https://github.com/brianokeefe/starch/fork )
- Create your feature branch (
git checkout -b my-new-feature) - Commit your changes (
git commit -am 'Add some feature') - Push to the branch (
git push origin my-new-feature) - Create a new Pull Request
FAQs
Unknown package
We found that starch demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 08 Oct 2016
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
Research
Typosquatting Cryptographic Libraries: Malicious npm Packages Threaten Crypto Developers with Keylogging and Wallet Theft
Socket researchers have discovered malicious npm packages targeting crypto developers, stealing credentials and wallet data using spyware delivered through typosquats of popular cryptographic libraries.
By Kirill Boychenko - Nov 27, 2024
Security News
Weekly Downloads Now Available in npm Package Search Results
Socket's package search now displays weekly downloads for npm packages, helping developers quickly assess popularity and make more informed decisions.
By Sarah Gooding - Nov 26, 2024