npmpackage.info

Gathering detailed insights and metrics for @lomray/rollup-plugin-generate-package-json-v2

NPM was acquired by GitHub in March 2020.

@lomray/rollup-plugin-generate-package-json-v2

Generate package.json file with packages from your bundle using Rollup

1.0.0

JavaScript

3,485

4.5

Installations

npm install @lomray/rollup-plugin-generate-package-json-v2

Score

Supply Chain

96.7

Quality

74.3

Maintenance

100

Vulnerability

98.6

License

Pull Requests

Open

0

Total

4

Closed

3

Merged

1

Issues

Open

2

Total

10

Closed

8

Releases

3.2.0

Published on 14 Nov 2019

3.1.4

Published on 12 Nov 2019

3.1.3

Published on 12 Jun 2019

3.1.2

Published on 02 Mar 2019

3.1.1

Published on 27 Feb 2019

3.1.0

Published on 20 Feb 2019

View all 10 releases

Developer

vladshcherbin

Module System

BETA

CommonJS

Statistics

33 Stars

81 Commits

6 Forks

2 Watching

1 Branches

2 Contributors

Updated on 19 Aug 2024

Languages

JavaScript (100%)

Total Downloads

Cumulative downloads

Total Downloads

3,485

Last day

200%

Compared to previous day

Last week

-50%

Compared to previous week

Last month

-9.5%

Compared to previous month

Last year

-94.8%

158

Compared to previous year

Daily Downloads

Weekly Downloads

Monthly Downloads

Yearly Downloads

Versions

rollup-plugin-generate-package-json

Generate package.json file with packages from your bundle using Rollup.

About

This plugin is useful when you have a lot of packages in your current package.json file and want to create a lean one with only packages from your generated bundle, probably for deployment.

Installation

1# yarn
2yarn add rollup-plugin-generate-package-json -D
3
4# npm
5npm install rollup-plugin-generate-package-json -D

Usage

1// rollup.config.js
2import generatePackageJson from 'rollup-plugin-generate-package-json'
3
4export default {
5  input: 'src/index.js',
6  output: {
7    file: 'dist/app.js',
8    format: 'cjs'
9  },
10  plugins: [
11    generatePackageJson()
12  ]
13}

Configuration

There are some useful options, all of them are optional:

inputFolder

Type: string
Default: current working directory

Set input package.json folder.

1generatePackageJson({
2  inputFolder: 'nested/folder'
3})

outputFolder

Type: string
Default: bundle output folder

Set output folder for generated package.json file.

1generatePackageJson({
2  outputFolder: 'dist'
3})

baseContents

Type: object | function
Default: {}

Set base contents for your generated package.json file.

1generatePackageJson({
2  baseContents: {
3    scripts: {
4      start: 'node app.js'
5    },
6    dependencies: {},
7    private: true
8  }
9})

It can also be a function, which receives the contents of the input package.json file.

1generatePackageJson({
2  baseContents: (pkg) => ({
3    name: pkg.name,
4    main: pkg.main.replace('src', 'dist')
5    dependencies: {},
6    private: true
7  })
8})

additionalDependencies

Type: Array | object
Default: []

Set dependencies which are not directly imported in the bundle, but are used by the app.

1generatePackageJson({
2  additionalDependencies: ['pg']
3})

It's also possible to add new dependencies or overwrite dependency version.

1generatePackageJson({
2  additionalDependencies: {
3    pg: '7.12.1',
4    'react-calendar': 'file:../react-calendar/react-calendar-v2.13.2.tgz'
5  }
6})

License

MIT

No vulnerabilities found.

10

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

10

Dangerous-Workflow

Determines if the project's GitHub Action workflows avoid dangerous patterns.

10

Token-Permissions

Determines if the project's workflows follow the principle of least privilege.

10

Pinned-Dependencies

Determines if the project has declared and pinned its dependencies.

10

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

0

Code-Review

Determines if the project requires code review before pull requests (aka merge requests) are merged.

Reason

GitHub code reviews found for 2 commits out of the last 30 -- score normalized to 0

Details

Warn: no reviews found for commit: 591987d28e822b5dd2da8594649328bf265e31d2
Warn: no reviews found for commit: cead329f65f1678f95a648e9a0ba12df7b4fc4f7
Warn: no reviews found for commit: 9fda0d5f1101c7bc23aaef6f569c4f5d8006df0b
Warn: no reviews found for commit: 396a84dfe7245070e556b337cc411897d20a184a
Warn: no reviews found for commit: 9543bc1e8012982bbd2a271823eb259b1a5b8992
Warn: no reviews found for commit: b1f4fefc27f4f4f50028ab1c0589cb330ee32df5
Warn: no reviews found for commit: bcebc55721adfafed7dd862d32140f8203df1c67
Warn: no reviews found for commit: 100caac3109dc62b77ae7147498054ff4b2dbf6e
Warn: no reviews found for commit: 4aa9981768421973e36477e5659da717643d218c
Warn: no reviews found for commit: bc85698d4aa24d558d94b1a1551f035d87031a18
Warn: no reviews found for commit: 95f7c16ee4dacbd724330666890e2a3376b275e0
Warn: no reviews found for commit: f2e027d26af22c7a7fe7cd62d01acdaa1588e9be
Warn: no reviews found for commit: ed88041f6eb304bd3d31fba805a6c3d807e91570
Warn: no reviews found for commit: c0c5d553aed00b4effd6984e93319c2dc870a60c
Warn: no reviews found for commit: a2204a64639126524933bc8bf935df1448feb2de
Warn: no reviews found for commit: 08082d759542927f2864b2f3a37b2cacb823f407
Warn: no reviews found for commit: ea55b5c103b2ea707ae70d7efb2626116b0cc1db
Warn: no reviews found for commit: e84936df8ad94975ddeb52095d937ca5f4bd8b42
Warn: no reviews found for commit: 2bc65829e8d19a8c9a37088e2f537aab3ea92dc4
Warn: no reviews found for commit: fb82e5308185ea1ef8269e69f4ebe43f3ae4941b
Warn: no reviews found for commit: 3ad74a09e5d31bcb06e8a8f7cc214998ce80f8db
Warn: no reviews found for commit: 3109b2b29fe56322cdaa16f1ea2839dabe8c027b
Warn: no reviews found for commit: 3d2ed645ec950f3661b18e617bfc8a4f6604e099
Warn: no reviews found for commit: 5a24e95c6f854fe25a3cb12ea568961ab37ed173
Warn: no reviews found for commit: 56a736ded025dba4847cd521c453c7380390e9fd
Warn: no reviews found for commit: 191fab72a386f51f6e3bd58856d93e6ca66ba2b1
Warn: no reviews found for commit: fed387cc901e1ab17159db61aefbfd0af6b4a7b6
Warn: no reviews found for commit: d1ba01b1ac55983d064550001afa23cdd931dbfc

0

Maintained

Determines if the project is "actively maintained".

0

CII-Best-Practices

Determines if the project has a CII Best Practices Badge.

0

Branch-Protection

Determines if the default and release branches are protected with GitHub's branch protection settings.

0

License

Determines if the project has defined a license.

0

Security-Policy

Determines if the project has published a security policy.

0

Dependency-Update-Tool

Determines if the project uses a dependency update tool.

0

Fuzzing

Determines if the project uses fuzzing.

Score

4.5

/10

Last Scanned on 2022-08-15

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.

Learn More

@lomray/rollup-plugin-generate-package-json-v2

Installations

Score

Pull Requests

0

4

3

1

Issues

2

10

8

Releases

Developer

vladshcherbin

Module System

CommonJS

Statistics

Languages

Total Downloads

3,485

Daily Downloads

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

Peer Dependencies

Dev Dependencies

rollup-plugin-generate-package-json

About

Installation

Usage

Configuration

inputFolder

outputFolder

baseContents

additionalDependencies

License

10

10

10

10

10

0

0

0

0

0

0

0

0

4.5

/10