npmpackage.info

Gathering detailed insights and metrics for html-webpack-externals-plugin-modified

html-webpack-externals-plugin-modified - 2.1.1 | npmpackage.info

html-webpack-externals-plugin-modified

Webpack plugin that works alongside html-webpack-plugin to use pre-packaged vendor bundles.

2.1.1

MIT

JavaScript

Installations

npm install html-webpack-externals-plugin-modified

Developer Guide

BETA

Typescript

No

Module System

CommonJS

Node Version

6.9.1

NPM Version

3.10.8 Pull Requests

Open

4

Total

24

Closed

11

Merged

9

Issues

Open

15

Total

31

Closed

16

Releases

v3.8.0

Updated on May 04, 2018

v3.7.0

Updated on Feb 17, 2018

v3.6.0

Updated on Sep 30, 2017

v3.5.3

Updated on Sep 17, 2017

v3.5.2

Updated on Sep 16, 2017

v3.5.1

Updated on Sep 16, 2017

View All 17 releases

Languages

JavaScript

JavaScript (100%)

Developer

mmiller42

Download Statistics

Total Downloads

Last Day

Last Week

Last Month

Last Year

GitHub Statistics

MIT License

99 Stars

129 Commits

16 Forks

6 Watchers

26 Branches

3 Contributors

Updated on May 29, 2024

Maintainers

View All 3 Contributors

Package Meta Information

Latest Version

2.1.1

Package Id

html-webpack-externals-plugin-modified@2.1.1

Size

4.49 kB

NPM Version

3.10.8

Node Version

6.9.1

Total Downloads

Cumulative downloads

Total Downloads

NaN

Last Day

NaN

Compared to previous day

Last Week

NaN

Compared to previous week

Last Month

NaN

Compared to previous month

Last Year

NaN

Compared to previous year

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

require-resolve

html-webpack-externals-plugin

This plugin supplements the fantastic html-webpack-plugin by providing a very basic interface for loading your external dependencies.

Webpack developers advise using externals to speed up compile time during development/builds as well as to leverage the caching capabilities of browsers.

This plugin allows you to load external CSS and JS dependencies with:

Absolute URLs. This approach lets you leverage the caching and speed benefits of CDNs. In this case, the module does not need to be in your dependencies list of your package.json and require/import statements will still behave as expected. Script/link tags with the given URLs are appended to the HTML.
Local module dist files. This approach lets you serve dist files of your specified dependencies instead of bundling them. At build time, the listed externals are copied from your node_modules into your build and script/link tags with relative paths are appended to the HTML.

Installation

1npm install html-webpack-externals-plugin --save-dev

Usage

Add it to the plugins array of your Webpack configuration, after your HtmlWebpackPlugin instance.

1const HtmlWebpackPlugin = require('html-webpack-plugin');
2const HtmlWebpackExternalsPlugin = require('html-webpack-externals-plugin');
3
4module.exports = {
5  // ...your Webpack config
6  plugins: [
7    new HtmlWebpackPlugin(),
8    new HtmlWebpackExternalsPlugin(
9      // See the API section
10    );
11  ]
12};

When using this plugin, do not define externals in the Webpack configuration yourself; it will be written by the plugin at runtime.

API

new HtmlWebpackExternalsPlugin(externals, options)

externals

An array of objects, each of which represents an external. Each object may have a set of properties, which are documented in the following code sample.

1[
2  {
3    // The name of the external dependency, i.e. what is passed into `require()` calls or `import`
4    // statements.
5    name: 'react',
6    // JS library dists typically export their API through a single global variable on the `window`
7    // object, e.g. `jQuery` or `React`. If the external does not export anything (e.g. a CSS
8    // dependency), omit this property.
9    var: 'React',
10    // The absolute URL to use when loading the dependency from a CDN.
11    url: 'https://cdnjs.cloudflare.com/ajax/libs/react/15.0.1/react.js'
12  },
13  {
14    name: 'react',
15    var: 'React',
16    // Alternatively, you can specify a path to a dist file of one of your packages in `node_modules`.
17    // This will copy it to the build directory when Webpack runs.
18    path: 'react/dist/react.min.js'
19  }
20]

options

An object containing configuration options for the plugin. Both options apply only to local externals (i.e. externals that use path instead of url).

1{
2  // The absolute path to resolve locally installed externals from. Usually this is your
3  // application's root directory. It is required for loading local externals. Most of the time you
4  // can pass `__dirname` to use the current directory.
5  basedir: __dirname,
6  // The directory to copy locally installed externals to within the build directory. Defaults to
7  // `'vendor'`.
8  dest: 'vendor'
9}

Example

webpack.config.js

1const HtmlWebpackPlugin = require('html-webpack-plugin');
2const HtmlWebpackExternalsPlugin = require('html-webpack-externals-plugin');
3
4module.exports = {
5  // ...your Webpack config
6  plugins: [
7    new HtmlWebpackPlugin(),
8    new HtmlWebpackExternalsPlugin(
9      [
10        // Using a CDN for a JS library
11        {
12          name: 'jquery',
13          var: 'jQuery',
14          url: 'https://cdnjs.cloudflare.com/ajax/libs/jquery/1.12.4/jquery.js'
15        },
16        // Using a locally installed module for a JS library
17        {
18          name: 'react',
19          var: 'React',
20          path: 'react/dist/react.min.js'
21        },
22        // Using a CDN for a library with no export (e.g. a CSS module)
23        {
24          name: 'bootstrap.css',
25          url: 'https://cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/3.3.5/css/bootstrap.css'
26        }
27      ],
28      {
29        // Resolve local modules relative to this directory
30        basedir: __dirname
31      }
32    );
33  ]
34};

index.jsx

1import React, {Component} from 'react';
2import $ from 'jquery';
3// No need to import 'bootstrap.css' because it's already been added to the page

Note that since they are externals, they are always loaded exactly once, whether they are used in source code or not. So this means that it is unnecessary to import the CSS libraries, like Bootstrap.

Assets Required by Library

For local externals (i.e. externals that use path instead of url), sometimes you need to copy other assets to the dist that the library depends on (e.g. font assets used by Bootstrap).

The easiest way to accomplish this is by complementing the HtmlWebpackExternalsPlugin with the CopyWebpackPlugin, which copies files in a directory to the build.

In your Webpack configuration's plugins array, add the plugin after your HtmlWebpackExternalsPlugin instance.

1new CopyWebpackPlugin([
2  {from: 'node_modules/bootstrap/dist/', to: 'vendor/bootstrap/dist/'},
3  {from: 'node_modules/font-awesome/fonts/', to: 'vendor/font-awesome/fonts/'}
4])

No vulnerabilities found.

10

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

10

License

Determines if the project has defined a license.

0

Maintained

Determines if the project is "actively maintained".

0

Code-Review

Determines if the project requires human code review before pull requests (aka merge requests) are merged.

0

CII-Best-Practices

Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.

0

Security-Policy

Determines if the project has published a security policy.

0

Fuzzing

Determines if the project uses fuzzing.

0

SAST

Determines if the project uses static code analysis.

0

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

Reason

97 existing vulnerabilities detected

Details

Warn: Project is vulnerable to: GHSA-v88g-cgmw-v5xw
Warn: Project is vulnerable to: GHSA-93q8-gq69-wqmw
Warn: Project is vulnerable to: GHSA-fwr7-v2mv-hh25
Warn: Project is vulnerable to: GHSA-67hx-6x53-jw92
Warn: Project is vulnerable to: GHSA-3wqf-4x89-9g79
Warn: Project is vulnerable to: GHSA-7mvr-5x2g-wfc8
Warn: Project is vulnerable to: GHSA-pj7m-g53m-7638
Warn: Project is vulnerable to: GHSA-9v3m-8fp8-mj99
Warn: Project is vulnerable to: GHSA-vc8w-jr9v-vj7f
Warn: Project is vulnerable to: GHSA-v6h2-p8h4-qcjw
Warn: Project is vulnerable to: GHSA-cwfw-4gq5-mrqx
Warn: Project is vulnerable to: GHSA-g95f-p29q-9xw4
Warn: Project is vulnerable to: GHSA-grv7-fg5c-xmjg
Warn: Project is vulnerable to: GHSA-x9w5-v3q2-3rhw
Warn: Project is vulnerable to: GHSA-c6rq-rjc2-86v2
Warn: Project is vulnerable to: GHSA-wxhq-pm8v-cw75
Warn: Project is vulnerable to: GHSA-257v-vj4p-3w2h
Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275
Warn: Project is vulnerable to: GHSA-p28h-cc7q-c4fg
Warn: Project is vulnerable to: GHSA-9vvw-cc9w-f27h
Warn: Project is vulnerable to: GHSA-gxpj-cx7g-858c
Warn: Project is vulnerable to: GHSA-hr2v-3952-633q
Warn: Project is vulnerable to: GHSA-h6ch-v84p-w6p9
Warn: Project is vulnerable to: GHSA-vh7m-p724-62c2
Warn: Project is vulnerable to: GHSA-r9p9-mrjm-926w
Warn: Project is vulnerable to: GHSA-434g-2637-qmqr
Warn: Project is vulnerable to: GHSA-49q7-c7j4-3p7m
Warn: Project is vulnerable to: GHSA-977x-g7h5-7qgw
Warn: Project is vulnerable to: GHSA-f7q4-pwc6-w24p
Warn: Project is vulnerable to: GHSA-fc9h-whq2-v747
Warn: Project is vulnerable to: GHSA-vjh7-7g9h-fjfh
Warn: Project is vulnerable to: GHSA-4gmj-3p3h-gm8h
Warn: Project is vulnerable to: GHSA-qrmc-fj45-qfc2
Warn: Project is vulnerable to: GHSA-74fj-2j2h-c42q
Warn: Project is vulnerable to: GHSA-pw2r-vq6v-hr8c
Warn: Project is vulnerable to: GHSA-jchw-25xp-jwwc
Warn: Project is vulnerable to: GHSA-cxjh-pqwp-8mfp
Warn: Project is vulnerable to: GHSA-8r6j-v8pm-fqw3
Warn: Project is vulnerable to: MAL-2023-462
Warn: Project is vulnerable to: GHSA-xf7w-r453-m56c
Warn: Project is vulnerable to: GHSA-44pw-h2cw-w3vq
Warn: Project is vulnerable to: GHSA-jp4x-w63m-7wgm
Warn: Project is vulnerable to: GHSA-c429-5p7v-vgjp
Warn: Project is vulnerable to: GHSA-43f8-2h32-f4cj
Warn: Project is vulnerable to: GHSA-pfq8-rq6v-vf5m
Warn: Project is vulnerable to: GHSA-8g7p-74h8-hg48
Warn: Project is vulnerable to: GHSA-pc5p-h8pf-mvwp
Warn: Project is vulnerable to: GHSA-qqgx-2p2h-9c37
Warn: Project is vulnerable to: GHSA-7r28-3m3f-r2pr
Warn: Project is vulnerable to: GHSA-r8j5-h5cx-65gg
Warn: Project is vulnerable to: GHSA-6c3j-c64m-qhgq
Warn: Project is vulnerable to: GHSA-gxr4-xjj5-5px2
Warn: Project is vulnerable to: GHSA-jpcq-cgw6-v4j6
Warn: Project is vulnerable to: GHSA-2pr6-76vf-7546
Warn: Project is vulnerable to: GHSA-8j8c-7jfh-h6hx
Warn: Project is vulnerable to: GHSA-896r-f27r-55mw
Warn: Project is vulnerable to: GHSA-9c47-m6qq-7p4h
Warn: Project is vulnerable to: GHSA-76p3-8jx3-jpfq
Warn: Project is vulnerable to: GHSA-3rfm-jhwj-7488
Warn: Project is vulnerable to: GHSA-hhq3-ff78-jv3g
Warn: Project is vulnerable to: GHSA-fvqr-27wr-82fm
Warn: Project is vulnerable to: GHSA-4xc9-xhrj-v574
Warn: Project is vulnerable to: GHSA-x5rq-j2xg-h7qm
Warn: Project is vulnerable to: GHSA-jf85-cpcp-j695
Warn: Project is vulnerable to: GHSA-p6mc-m468-83gw
Warn: Project is vulnerable to: GHSA-29mw-wpgm-hmr9
Warn: Project is vulnerable to: GHSA-35jh-r3h4-6jhm
Warn: Project is vulnerable to: GHSA-pp57-mqmh-44h7
Warn: Project is vulnerable to: GHSA-4xcv-9jjx-gfj3
Warn: Project is vulnerable to: GHSA-952p-6rrq-rcjv
Warn: Project is vulnerable to: GHSA-f8q6-p94x-37v3
Warn: Project is vulnerable to: GHSA-vh95-rmgr-6w4m
Warn: Project is vulnerable to: GHSA-xvch-5gv4-984h
Warn: Project is vulnerable to: GHSA-rp65-9cf3-cjxr
Warn: Project is vulnerable to: GHSA-h7cp-r72f-jxh6
Warn: Project is vulnerable to: GHSA-v62p-rq8g-8h59
Warn: Project is vulnerable to: GHSA-566m-qj78-rww5
Warn: Project is vulnerable to: GHSA-7fh5-64p2-3v2j
Warn: Project is vulnerable to: GHSA-hrpp-h998-j3pp
Warn: Project is vulnerable to: GHSA-6g33-f262-xjp4
Warn: Project is vulnerable to: GHSA-p8p7-x288-28g6
Warn: Project is vulnerable to: GHSA-c2qf-rxjj-qqgw
Warn: Project is vulnerable to: GHSA-44c6-4v22-4mhx
Warn: Project is vulnerable to: GHSA-4x5v-gmq8-25ch
Warn: Project is vulnerable to: GHSA-h9rv-jmmf-4pgx
Warn: Project is vulnerable to: GHSA-hxcc-f52p-wc94
Warn: Project is vulnerable to: GHSA-2m39-62fm-q8r3
Warn: Project is vulnerable to: GHSA-vx3p-948g-6vhq
Warn: Project is vulnerable to: GHSA-mf6x-7mm4-x2g7
Warn: Project is vulnerable to: GHSA-j44m-qm6p-hp7m
Warn: Project is vulnerable to: GHSA-3jfq-g458-7qm9
Warn: Project is vulnerable to: GHSA-5955-9wpr-37jh
Warn: Project is vulnerable to: GHSA-f5x3-32g6-xq36
Warn: Project is vulnerable to: GHSA-g7q5-pjjr-gqvp
Warn: Project is vulnerable to: GHSA-72xf-g2v4-qvf3
Warn: Project is vulnerable to: GHSA-c4w7-xm78-47vh
Warn: Project is vulnerable to: GHSA-p9pc-299p-vxgp

Score

2

/10

Last Scanned on 2025-07-07

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.

Learn More