Command-line tools are amazing. With npx, you can create, publish and run an easily accessible command-line tool within minutes. This will be a step-by-step guide that will show you how to do just that. By the end of this project, you should have an npm CLI tool up in the npm registry which you should be able to invoke from anywhere using npx demo-npm-cli-tool .
Before we get into the how let's first discuss the why. In the last decade, if you've done any work even remotely related to react or node.js you might have heard of create-react-app which is typically run using npx to generate a boilerplate React application. Asides from boilerplate generators there are many existing packages that can be run using npx such as:
- https://www.npmjs.com/package/node: Lets you run your scripts with different versions of node.
- https://www.npmjs.com/package/eslint: You can use the one-off
npx eslint --initcommand to check syntax and find problems in your code. - https://github.com/dylang/npm-check: Checks for incorrect/unused dependencies in your project.
- https://github.com/http-party/http-server : (My personal favorite) This immediately creates an HTTP server and serves it locally and globally.
And there are many more out there. These packages do a great job of demonstrating the power and convenience that npx provides. In addition to npx, we'll be using a command-line interface library called inquirer that lets us take user inputs. Combining npx with this CLI package lets us build powerful tools and the applications are possibly endless.
However, a quick word of caution: it's not recommended that you run random/unknown scripts on your computer. This might cause serious harm if the publisher has created the package with malicious intent. There have been breaking news in the past regarding even the more popular packages like left-pad and event-stream that have given rise to controversy regarding the safety of npm packages. Some harmful effects of using untrusted npm/npx scripts may include corrupting/deleting files in your system, harvesting sensitive information like environment variables, OS details, and much more. So it's important that the package you are running can be trusted.
Now that we've covered the why let's get started with the how.
Creating an npm project
First, initialize a new directory for your new npm package. This is no different from initializing any other node projects with npm.
Create the directory and cd into it.
$ mkdir demo-npm-cli-tool
$ cd demo-npm-cli-tool
Then, run the npm initialization command and follow the prompts.
$ npm init
Follow the prompts to specify the package name, version, and so on. Alternatively, you could just skip the prompts and use the default values by using the command.
$ npm init -y
By the end, you should have a package.json file which should look something like this:
{
"name": "demo-npm-cli-tool",
"version": "1.0.0",
"description": "",
"main": "index.js",
"scripts": {
"test": "echo \"Error: no test specified\" && exit 1"
},
"keywords": [],
"author": "",
"license": "ISC"
}
The above values are the defaults if not explicitly defined. I recommend filling out all the fields present above including description, keywords and author, respository and homepage sections. The keywords will help potential users search for your tools easily. Also, a solid README outlining the details of usage is absolutely a must if your project is to be taken seriously. All these fields will give better clarity to your npm project. There are also other fields, which although not necessary, are present in bigger projects like bugs which has the URL and email specifying where the issues should be reported. A complete list of all the fields and details can be found in the npmjs docs.
And most importantly, you will want a bin property as well, we'll get into the why in the later parts of this article.
"bin": "./index.js"
In the end the package.json should look something like:
{
"name": "demo-npm-cli-tool",
"version": "1.0.0",
"description": "First npm CLI tool published",
"main": "index.js",
"scripts": {
"test": "echo \"Error: no test specified\" && exit 1"
},
"repository": "https://github.com/nipeshkc7/npm-publish-demo",
"homepage": "https://github.com/nipeshkc7/npm-publish-demo#readme",
"bin": "./index.js",
"keywords": [
"cli",
"npmtool"
],
"author": "Arpan Kc",
"license": "ISC",
}
Creating a command-line tool
We will be creating a simple command-line tool that prompts the user for a pokemon name and displays its types using the pokemon API. To get user prompts we'll be using Inquirer.js which lets you easily build beautiful command-line interfaces.
First, let’s install the packages we’ll need for the tool:
npm install inquirer axios
Next you want to create an index.js and add the following code:
#!/usr/bin/env node
const inquirer = require('inquirer');
const axios = require('axios');
inquirer
.prompt([
{
type: "question",
name: "pokemonName",
message: "Name of pokemon",
default: "pikachu"
}
])
.then(async (answers) => {
try {
const res = await axios.get(`https://pokeapi.co/api/v2/pokemon/${answers.pokemonName}`)
console.log(res.data.types.map(type => type.type.name));
} catch (err) {
console.log("Pokemon not found, try again");
}
})
Let's go through the code, the first line #!/usr/bin/env node is called a shebang line, which tells a Unix like system what executable to use to run the script, which in this case is node.
Then we'll use the inquirer package to get input from the user, currently, the input type is a question, but you can also have lists, checkboxes, and much more.
Then we can get the user answers which for the purposes of this program, we'll append to the API request. Then we can use console.log to display the result back to the user.
Testing locally
There are two ways of testing your new npm tool locally. The easiest way is by using the npx command with the local path of your npm package. To find the path of your package, you can use the pwd command in the package directory. Then from any other directory, you can run the command:
npx /path/to/package
This should yield something like this:
? Name of pokemon pikachu <enter>
[ 'electric' ]
The second way is by using the npm link command. To do this run this command inside your npm package directory:
npm link
Given you have filled out the bin property in package.json, npm will install your package globally and refer to the bin entry and link your package name with the index.js file as specified in the package.json configuration. So you can run your command using your package name:
demo-npm-cli-tool
This should run the command line script.
If everything works as expected, you're now ready to publish your awesome tool to npmjs.
Publishing to npm
Now that we have our npm tool up and running, the next step is to publish it. This can be achieved with two simple steps.
- Log in to npm using
npm loginand follow the prompts. - Run
npm publish
And there you have it, your package should be available at https://www.npmjs.com/.
You can make updates and republish the package using the steps above but make sure to update the version number as npm won't let you publish with the same number.
Running your tool
Now using npx, the npm package runner, you can run your code from anywhere without having to globally install the packages by running:
npx <your package name>
And the cool thing is you npx comes with npm by default, so you don't need to worry about installing it separately.
Bonus: Deploying your npm package using Github Actions
Let's talk about how to use Github actions to automate publishing to the npm registry. We're going to create a workflow that's going to get triggered every time you push your changes to the main (or master) branch. For this, create a publish.yml file in the .github/workflows directory. And add the following contents into the yml file:
name: Publish Package to npmjs
on:
push:
branches: [main]
jobs:
build:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v2
# Setup .npmrc file to publish to npm
- uses: actions/setup-node@v2
with:
node-version: '16.x'
registry-url: 'https://registry.npmjs.org'
- run: npm ci
- run: npm publish
env:
NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}
Few important things to note here:
- We're saying we want to trigger this action every time we push into the
mainbranch. Another way would be to trigger it when you create a release using Github. For this, lines 2-4 should be updated to:
on:
release:
types: [created]
-
Line 14 specifies the registry we will be publishing to which has to be
https://registry.npmjs.orgin our case. You may choose to publish it into the Github package registry which has the URLhttps://npm.pkg.github.com -
The following lines do a clean install of the dependencies and then run the
publishsimilarly to how it's done locally. For this command to work as expected you will need to create an access token from your npm account. For this, click on the top right button with your logo and click onAccess Tokens. From there, press theGenerate Tokenbutton which shows you three options. Click on theAutomationcheckbox which will give us a token that we can use in our Github Actions.
-
To add the access token into github, go to your repository and click on
settings, go to thesecretstab and create a new secret namedNPM_TOKENwhich is the variable name we've used in our actions file. In theValuetext field copy the token generated from the preceding step. -
Finally to test the pipeline, simply push a new commit to
mainMake sure that the version number inpackage.jsonhas changed. Then in your Github actions tab, you should have something like this which means you have successfully deployed your npm package.
Where to go from here?
There are plenty of other potential applications. Here are some ideas to get you started:
- A CLI tool that generates a README based on some user-provided details.
- A CLI tool that generates boilerplate code for your needs, something like
create-react-app - A script hosted on GitHub gists you can share with your friends.
- CLI tool that updates the
hostsfile that blocks distracting websites like Facebook and Instagram using https://github.com/feross/hostile
I hope this post inspired you to create your own npm package.
Source code
The source code and the packages used for this tutorial can be found here, feel free to use the code as a reference and make it your own:
- Source code: https://github.com/nipeshkc7/npm-publish-demo
- Package: https://www.npmjs.com/package/npm-tool-8687
