cli
catalyst
cli | catalyst | |
---|---|---|
12 | 8 | |
360 | 1,285 | |
0.3% | 0.7% | |
8.8 | 0.0 | |
4 days ago | about 1 month ago | |
JavaScript | TypeScript | |
MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
cli
-
Securizing your GitHub org
📢 By the way NodeSecure CLI has a first-class support of the scorecard.
-
JS-X-Ray 6.0
Those information are visible in the NodeSecure CLI interface:
-
📦 Everything you need to know: package managers
@nodesecure/cli, a CLI that allow you to deeply analyze the dependency tree of a given package or local Node.js project
-
Announcing NodeSecure Vulnera
Fun fact: its first contribution 🐤 on NodeSecure was also on the old version of the code Scanner that managed vulnerabilities.
- GitHub - NodeSecure/cli: JavaScript security CLI that allow you to deeply analyze the dependency tree of a given package or local Node.js project.
-
A technical tale of NodeSecure - Chapter 2
When NodeSecure was a single project the AST analysis was at most a few hundred lines in two or three JavaScript files. All the logic was coded with if and else conditions directly in the walker 🙈.
-
NodeSecure - What's new in 2022 ?
View on GitHub
-
Detect Marak Squires packages with NodeSecure
NodeSecure can now detect packages created by Marak and it will generate a global warning ⚠️.
-
Node-Secure v0.9.0
After more than ten long months of work we are finally there 😵! Version 0.9.0 has been released on npm 🚀.
-
Announcing new Node-Secure back-end
Nsecure
catalyst
-
The Invokers Are Coming
Reminds me of GitHub catalyst web component framework, which has targets & actions. https://github.com/github/catalyst
-
Node-Secure v0.9.0
Working on the next Web UI (TypeScript + Catalyst).
-
Introducing: Custom Elements Manifest
Catalyst (opt-in via CLI flag)
-
Why jQuery should be more appreciated
They actually use a web component system, with a library called Catalyst used to make things a bit easier. They aren't simply doing raw DOM manipulation in Vanilla JavaScript, they're using components and what is essentially a fairly lightweight framework.
-
GitHub's Web Component Collection
Personally, I'd really like to see the unmolested, with-dependencies versions[1].
This version is VERY easy to ship and adopt. But in my mind, these components hide how the sausage is made! Many were built with a library (Catalyst[2]), but the tools were obfuscated out in these end products.
There's a huge amount to be said for these web components. We need more models like this. But I also think there's an opportunity lost here, to teach, to inform, to help others learn how to build components, using the tech Github actually used to develop them.
[1] https://news.ycombinator.com/item?id=26439167
[2] https://github.com/github/catalyst
- new @attr decorator for class fields | Github/Catalyst#103
-
Getting Up & Running with GitHub Catalyst
GitHub Catalyst is a library that makes it easier to develop Web Components.
-
Project Lightspeed: A self-contained, sub-second, open source live stream platform
The only real escape is using something like /r/webcomponents. I did some playing around with Github's new Catalyst framework over the holidays, quite enjoyed it. But you'd be one of the only people on the planet using it. Stick with whatever works for you.
What are some alternatives?
rc - NodeSecure runtime configuration
stencil - A toolchain for building scalable, enterprise-ready component systems on top of TypeScript and Web Component standards. Stencil components can be distributed natively to React, Angular, Vue, and traditional web developers from a single, framework-agnostic codebase.
ci - NodeSecure tool enabling secured continuous integration
github-elements - GitHub's Web Component collection.
undici - An HTTP/1.1 client, written from scratch for Node.js
custom-elements-manifest - A file format for describing custom elements
estree - The ESTree Spec
lwc - ⚡️ LWC - A Blazing Fast, Enterprise-Grade Web Components Foundation
js-x-ray - JavaScript & Node.js open-source SAST scanner. A static analyser for detecting most common malicious patterns 🔬.
webcomponents - Web Components specifications [Moved to: https://github.com/WICG/webcomponents]
astexplorer - A web tool to explore the ASTs generated by various parsers.
shoelace-css - A collection of professionally designed, every day UI components built on Web standards. SHOELACE IS BECOMING WEB AWESOME. WE ARE LIVE ON KICKSTARTER! 👇👇👇