catalyst
cli
| catalyst | cli | |
|---|---|---|
| 8 | 12 | |
| 1,285 | 360 | |
| 0.7% | 0.3% | |
| 0.0 | 8.8 | |
| about 1 month ago | 6 days ago | |
| TypeScript | JavaScript | |
| MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
catalyst
-
The Invokers Are Coming
Reminds me of GitHub catalyst web component framework, which has targets & actions. https://github.com/github/catalyst
-
Node-Secure v0.9.0
Working on the next Web UI (TypeScript + Catalyst).
-
Introducing: Custom Elements Manifest
Catalyst (opt-in via CLI flag)
-
Why jQuery should be more appreciated
They actually use a web component system, with a library called Catalyst used to make things a bit easier. They aren't simply doing raw DOM manipulation in Vanilla JavaScript, they're using components and what is essentially a fairly lightweight framework.
-
GitHub's Web Component Collection
Personally, I'd really like to see the unmolested, with-dependencies versions[1].
This version is VERY easy to ship and adopt. But in my mind, these components hide how the sausage is made! Many were built with a library (Catalyst[2]), but the tools were obfuscated out in these end products.
There's a huge amount to be said for these web components. We need more models like this. But I also think there's an opportunity lost here, to teach, to inform, to help others learn how to build components, using the tech Github actually used to develop them.
[1] https://news.ycombinator.com/item?id=26439167
[2] https://github.com/github/catalyst
- new @attr decorator for class fields | Github/Catalyst#103
-
Getting Up & Running with GitHub Catalyst
GitHub Catalyst is a library that makes it easier to develop Web Components.
-
Project Lightspeed: A self-contained, sub-second, open source live stream platform
The only real escape is using something like /r/webcomponents. I did some playing around with Github's new Catalyst framework over the holidays, quite enjoyed it. But you'd be one of the only people on the planet using it. Stick with whatever works for you.
cli
-
Securizing your GitHub org
📢 By the way NodeSecure CLI has a first-class support of the scorecard.
-
JS-X-Ray 6.0
Those information are visible in the NodeSecure CLI interface:
-
📦 Everything you need to know: package managers
@nodesecure/cli, a CLI that allow you to deeply analyze the dependency tree of a given package or local Node.js project
-
Announcing NodeSecure Vulnera
Fun fact: its first contribution 🐤 on NodeSecure was also on the old version of the code Scanner that managed vulnerabilities.
- GitHub - NodeSecure/cli: JavaScript security CLI that allow you to deeply analyze the dependency tree of a given package or local Node.js project.
-
A technical tale of NodeSecure - Chapter 2
When NodeSecure was a single project the AST analysis was at most a few hundred lines in two or three JavaScript files. All the logic was coded with if and else conditions directly in the walker 🙈.
-
NodeSecure - What's new in 2022 ?
View on GitHub
-
Detect Marak Squires packages with NodeSecure
NodeSecure can now detect packages created by Marak and it will generate a global warning ⚠️.
-
Node-Secure v0.9.0
After more than ten long months of work we are finally there 😵! Version 0.9.0 has been released on npm 🚀.
-
Announcing new Node-Secure back-end
Nsecure
What are some alternatives?
stencil - A toolchain for building scalable, enterprise-ready component systems on top of TypeScript and Web Component standards. Stencil components can be distributed natively to React, Angular, Vue, and traditional web developers from a single, framework-agnostic codebase.
rc - NodeSecure runtime configuration
github-elements - GitHub's Web Component collection.
ci - NodeSecure tool enabling secured continuous integration
custom-elements-manifest - A file format for describing custom elements
undici - An HTTP/1.1 client, written from scratch for Node.js
lwc - ⚡️ LWC - A Blazing Fast, Enterprise-Grade Web Components Foundation
estree - The ESTree Spec
webcomponents - Web Components specifications [Moved to: https://github.com/WICG/webcomponents]
js-x-ray - JavaScript & Node.js open-source SAST scanner. A static analyser for detecting most common malicious patterns 🔬.
shoelace-css - A collection of professionally designed, every day UI components built on Web standards. SHOELACE IS BECOMING WEB AWESOME 👇👇👇
astexplorer - A web tool to explore the ASTs generated by various parsers.