Gathering detailed insights and metrics for vue-docgen-loader
Gathering detailed insights and metrics for vue-docgen-loader
Installations
npm install vue-docgen-loaderDeveloper
pocka
Developer Guide
BETA
Module System
CommonJS
Min. Node Version
>= 12
Typescript Support
No
Node Version
18.20.4
NPM Version
10.7.0
Statistics
13 Stars
63 Commits
4 Forks
3 Watching
1 Branches
4 Contributors
Updated on 29 Oct 2024
Bundle Size
1.28 MB
Minified
336.98 kB
Minified + Gzipped
Languages
JavaScript (100%)
Total Downloads
Cumulative downloads
Total Downloads
59,048,894
Last day
-9.5%
24,881
Compared to previous day
Last week
-1.3%
133,883
Compared to previous week
Last month
14.7%
560,149
Compared to previous month
Last year
-30%
10,593,386
Compared to previous year
Daily Downloads
Weekly Downloads
Monthly Downloads
Yearly Downloads
Dependencies
3
Peer Dependencies
2
Versions
vue-docgen-loader
This package allows parsing Vue component file with vue-docgen-api then injecting the result into the output file.
Getting Started
First, install the loader and vue-docgen-api.
1$ yarn add -D vue-docgen-loader vue-docgen-api 2# or npm 3# $ npm i -D vue-docgen-loader vue-docgen-api
Then add the loader to your webpack config file. Please make sure to run the loader at the last of the loader chain.
1import MyComponent from './my-component.vue' 2 3Vue.extend({ 4 // You can use the components as usual 5 components: { MyComponent } 6})
1// webpack.config.js 2module.exports = { 3 module: { 4 rules: [ 5 { 6 test: /\.vue$/, 7 use: 'vue-loader' 8 }, 9 { 10 // You also can put this loader above, but I recommend to use 11 // a separeted rule with enforce: 'post' for maintainability 12 // and simplicity. For example, you can enable the loader only 13 // for development build. 14 test: /\.vue$/, 15 use: 'vue-docgen-loader', 16 enforce: 'post' 17 } 18 ] 19 }, 20 plugins: [new VueLoaderPlugin()] 21}
If you want to apply this loader to non-SFC files like below, you also need to setup a rule for them. This works only with vue-docgen-api >= 4.0.0.
1// my-button.js 2import Vue from 'vue' 3 4export const MyButton = Vue.extend({ 5 props: { 6 foo: { 7 type: String 8 } 9 }, 10 template: '<button/>' 11})
1// other.js 2import MyButton from './my-button.js?component'
1// webpack.config.js 2module.exports = { 3 module: { 4 rules: [ 5 // Please make sure to apply the loader only for Vue components: In this 6 // sample, only modules imported with ?component query will match. 7 // 8 // IMPORTANT! 9 // Do not use ?vue query if you're using vue-loader. It will sliently inject 10 // .js?vue rule into rules array and it breaks the module. 11 { 12 test: /\.js$/, 13 resourceQuery: /component/, 14 use: 'vue-docgen-loader', 15 enforce: 'post' 16 } 17 ] 18 } 19}
Options
You can pass options for vue-docgen-api through docgenOptions and specify the property name the loader inject docgen result at.
1{ 2 test: /\.vue$/, 3 loader: 'vue-docgen-loader', 4 options: { 5 docgenOptions: { 6 // options for vue-docgen-api... 7 }, 8 // Injected property name 9 injectAt: '__docgenInfo' // default 10 }, 11 enforce: 'post' 12}
Contributing
Please read our contributing guidelines.
No vulnerabilities found.
Reason
no dangerous workflow patterns detected
Reason
no binaries found in the repo
Reason
0 existing vulnerabilities detected
Reason
license file detected
Details
- Info: project has a license file: LICENSE:0
- Info: FSF or OSI recognized license: MIT License: LICENSE:0
Reason
6 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 5
Reason
Found 2/25 approved changesets -- score normalized to 0
Reason
dependency not pinned by hash detected -- score normalized to 0
Details
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-alpha.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/pocka/vue-docgen-loader/publish-alpha.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-alpha.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/pocka/vue-docgen-loader/publish-alpha.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-beta.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/pocka/vue-docgen-loader/publish-beta.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish-beta.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/pocka/vue-docgen-loader/publish-beta.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/pocka/vue-docgen-loader/publish.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/pocka/vue-docgen-loader/publish.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/pocka/vue-docgen-loader/test.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/pocka/vue-docgen-loader/test.yml/master?enable=pin
- Warn: npmCommand not pinned by hash: .github/workflows/publish-alpha.yml:21
- Warn: npmCommand not pinned by hash: .github/workflows/publish-beta.yml:21
- Warn: npmCommand not pinned by hash: .github/workflows/publish.yml:23
- Info: 0 out of 8 GitHub-owned GitHubAction dependencies pinned
- Info: 0 out of 3 npmCommand dependencies pinned
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Warn: no topLevel permission defined: .github/workflows/publish-alpha.yml:1
- Warn: no topLevel permission defined: .github/workflows/publish-beta.yml:1
- Warn: no topLevel permission defined: .github/workflows/publish.yml:1
- Warn: no topLevel permission defined: .github/workflows/test.yml:1
- Info: no jobLevel write permissions found
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
security policy file not detected
Details
- Warn: no security policy file detected
- Warn: no security file to analyze
- Warn: no security file to analyze
- Warn: no security file to analyze
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
branch protection not enabled on development/release branches
Details
- Warn: branch protection not enabled for branch 'master'
Reason
SAST tool is not run on all commits -- score normalized to 0
Details
- Warn: 0 commits out of 10 are checked with a SAST tool
Score
3.9
/10
Last Scanned on 2024-11-18
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More