有什么方法可以 (a) 禁止节点应用程序使用require/import全局安装的 npm 模块,或者 (b) 至少在使用全局安装的模块时输出警告?
原因是:我一再遇到这样的情况:开发人员(包括我自己)在节点应用程序中合并了一个模块但未能将其添加到其中,package.json因为它恰好是全局安装在他们的机器上,因此本地没有错误机器; 但是在部署到没有全局安装该模块的系统时,它当然会失败。只需确保所有模块实际上都包含在package.json.
ESLint方式
1)使用哈士奇模块:npm install husky --save-dev
2) 安装 eslint 和它的 deps (参见下面的 package.json 示例)。
3) 示例 package.json:
{
"name": "shopping-cart-estimator-test",
"version": "1.0.0",
"description": "",
"scripts": {
"start": "node ports/http.js",
"eslint-check": "./node_modules/eslint/bin/eslint.js .",
"eslint-fix": "./node_modules/eslint/bin/eslint.js . --fix",
"test": "./node_modules/.bin/mocha test --exit"
},
"devDependencies": {
"babel-eslint": "^10.1.0",
"husky": "^4.2.5",
"mocha": "^7.1.2",
"eslint": "^7.0.0",
"eslint-config-import": "^0.13.0",
"eslint-config-standard": "^14.1.1",
"eslint-plugin-import": "^2.20.2",
"eslint-plugin-node": "^11.1.0",
"eslint-plugin-promise": "^4.2.1",
"eslint-plugin-standard": "^4.0.1"
},
"dependencies": {
"lodash": "^4.17.15"
},
"husky": {
"hooks": {
"pre-commit": "npm run eslint-check && npm test",
"pre-push": "npm run eslint-check && npm test"
}
}
}
4).eslintrc.js使用import/no- extraneous- dependencies规则创建文件(它需要eslint-plugin-import,确保它在 package.json 中):
module.exports = {
"extends": "standard",
"parser": "babel-eslint",
"rules": {
"semi": ["error", "always"],
"no-unused-vars": 1,
"spaced-comment": ["warn"],
"no-trailing-spaces": ["warn"],
"comma-dangle": ["error", {
"arrays": "always",
"objects": "always",
"imports": "never",
"exports": "never",
"functions": "never"
}],
"space-before-function-paren": ["error", {
"anonymous": "always",
"named": "never",
"asyncArrow": "always"
}],
"import/no-extraneous-dependencies": ["error", {"packageDir": __dirname}],
},
"overrides": [{
"files": ["spec/tests/*.js", "spec/tests/**/*.js"],
"rules": {
"no-unused-expressions": 0,
"no-unused-vars": 1
}
}]
};
“自定义脚本方式”
1)使用哈士奇模块:npm install husky --save-dev
2) 在 package.json 中添加钩子到 pre-commit、pre-push:
"husky": {
"hooks": {
"pre-commit": "npm test && node scripts/check-deps.js",
"pre-push": "npm test && node scripts/check-deps.js"
}
}
3)安装依赖树:npm i --save dependency-tree
4) 编写scripts/check-deps.js脚本来查找外部(非 package.json)依赖项,如果它们存在,将:
console.warn('Found external dependency');
process.exit(-1);
| 归档时间: |
|
| 查看次数: |
75 次 |
| 最近记录: |