sandworm-guard-js
eleventy 🕚⚡️
sandworm-guard-js | eleventy 🕚⚡️ | |
---|---|---|
9 | 244 | |
248 | 16,285 | |
0.0% | 1.0% | |
0.0 | 9.3 | |
about 1 year ago | 2 days ago | |
JavaScript | JavaScript | |
MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
sandworm-guard-js
- Sandworm: Keep Your JavaScript Code Secure and Compliant
-
Running Eleventy Serverless On AWS Lambda@Edge
When building Sandworm’s open-source security & license compliance audits for JavaScript packages, we wanted to generate a catalog of beautiful report visualizations for every library in the npm registry. That is, for every version of every library in the registry. We soon found out — that’s more than 30 million package versions. Good luck generating, uploading, and keeping that amount of HTML pages up to date in a decent amount of time, right?
-
FOSS: Sandworm - Easy auditing & sandboxing for JS dependencies
No whitepaper yet, but here's where the magic happens: https://github.com/sandworm-hq/sandworm-guard-js/blob/main/src/patch.js
-
[AskJS] Open source license compliance
You can use https://sandworm.dev to quickly inspect individual licenses for packages when considering adding them as a dependency (note: I'm one of the developers).
- Sandworm.JS - dynamically analyses over 2M javascript packages to offer zero day, real time protection against malicious scripts.
- Dynamic analysis for JS dependencies + intercepts all potentially harmful Node & browser APIs, like arbitrary code execution or network calls
- Show HN: Sandworm.js-Security audit& fine grained permissions for NPM packages
-
Sandworm.JS - npm module permissions system
Hey all - we’re a small team of developers working on making Javascript more secure! We’re working on a OSS product named Sandworm.JS - a sandboxing & malware detection tool for npm packages. Would love to hear your feedback and feel free to try it out and contribute if you’re passionate about this topic: https://github.com/sandworm-hq/sandworm-js
eleventy 🕚⚡️
-
Converting BlogCFC blog to Eleventy
This post outlines the steps for migrating an existing BlogCFC blog to a JamStack, with a focus on using Eleventy.
-
Ask HN: What's the simplest static website generator?
I suggest you to try out eleventhy (https://www.11ty.dev/)
Quite simple to start, and a nice system to add some scripting and styles without the requirement of bringing in a framework.
-
Eleventy - Create a global production flag
A production flag enables you to run activities in dev or production such as minifying assets, showing draft posts, etc. There isn't a built-in flag or function that comes with eleventy (11ty) specifically for this. However we have this info at our fingertips.
-
Ask HN: Looking for lightweight personal blogging platform
I can't recommend Eleventy enough!
https://www.11ty.dev
I converted my WordPress blog to Eleventy 4 years ago and never looked back, it's been delightful!
https://www.joshcanhelp.com/taking-wordpress-to-eleventy/
-
Removing React is just weakness leaving your codebase
It’s 2024, and you are about to start a new project. Do you reach for React, a framework you know and love or do you look at one of the other hot new frameworks like Astro, Enhance, 11ty, SvelteKit or gasp, plain vanilla Web Components?
-
VS Code - Fix a task automation issue - `The terminal process failed to launch (exit code: 127`
The "dev" script is running the eleventy server in dev mode. The details of the script are not important for this discussion, but to round out the background here is an abbreviated version of my package.json:
-
Eleventy vs. Next.js for static site generation
Eleventy is a fast and powerful SSG that really shines when it comes to pure static site generation because it does not require the loading of a client-side JavaScript bundle in order to serve content.
-
You don't need JavaScript for that
The irony is using a JavaScript-based static site generator to make the site: https://www.11ty.dev
-
Why You Should Write Your Own Static Site Generator
https://doublejosh.com/post/186193119278/metalsmithjs-is-sti...
Then two years ago I needed a more robust SSR system based on React, so I went with GatsbyJS. It's insanely mature and intuitive, but as we all know that community and business is now drying up too. But the framework is still great.
Now everyone sings the praises of NextJS, which can be used for SSR but is intended for applications and active server endpoints. But more complexity doesn't mean better.
I'm keen to try other simple frameworks when the result is a static site. I may give https://www.11ty.dev a shot.
-
From Jason: my custom digital garden in 11ty
11ty is a lightweight static site generator. I chopped up my HTML and used the 11ty starter template called eleventy-base-blog as the structural foundation for the site.
What are some alternatives?
CodeBox - A sandbox coding environment - desktop app, inspired by CodePen and JSFiddle
astro - The web framework for content-driven websites. ⭐️ Star to support our work!
sandworm-audit - Security & License Compliance For Your App's Dependencies 🪱
Hugo - The world’s fastest framework for building websites.
SES-shim - Endo is a distributed secure JavaScript sandbox, based on SES
SvelteKit - web development, streamlined
fetch-intercept - Interceptor library for the native fetch command inspired by angular http intercepts.
Gatsby - The best React-based framework with performance, scalability and security built in.
overlay - Overlay is a browser extension helping developers evaluate open source packages before picking them
Publii - The most intuitive Static Site CMS designed for SEO-optimized and privacy-focused websites.
sandworm-mocha - Security Snapshot Testing Inside Your Mocha Test Suite 🪱
Grav - Modern, Crazy Fast, Ridiculously Easy and Amazingly Powerful Flat-File CMS powered by PHP, Markdown, Twig, and Symfony