npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@misterzik/espressojs

v4.0.1

Published

EspressoJS - A modern, secure Express.js boilerplate with SSR support, API enhancements, and plug-and-play configuration. Built for rapid development with security-first approach.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

misterzikmisterzik

Keywords

espressojsespresso jsespressoexpressnode-expressexpress-apiexpress-serverexpress boilerplateexpressnodejsssrserver-side-renderingapi-frameworksecurityrest-apigraphqlswaggeropenapi

Readme

Espresso

EspressoJS v4.0.0

A modern, secure Express.js framework with SSR, API documentation, and enterprise-grade security. Built for rapid development with a plug-and-play approach.

npm version License: MIT Node.js Version Security

✨ What's New in v4.0.0

🎉 Major Release - See Full Changelog | Migration Guide | Upgrade Summary

  • 🎨 Server-Side Rendering - EJS, Handlebars, Pug support
  • 📚 API Documentation - Auto-generated Swagger/OpenAPI docs
  • 🔒 Enhanced Security - NoSQL injection prevention, HPP protection, strict CSP
  • 🚀 API Enhancements - Versioning, validation, response formatting
  • 📦 Latest Packages - All dependencies updated to secure versions
  • 📝 Comprehensive Docs - 2,000+ lines of guides and examples

🚀 Features

Core Features

  • Quick Setup - Zero-config startup with sensible defaults
  • 🔒 Security First - 6+ layers of enterprise-grade security
  • 📝 Advanced Logging - Winston logger with multiple transports
  • 🛡️ Error Handling - Centralized error handling with custom error classes
  • 🔧 Configuration Management - JSON-based config with Joi validation
  • 💾 MongoDB Ready - Optional MongoDB integration with secure connections
  • 🏥 Health Checks - Built-in health, readiness, and liveness endpoints
  • 🎯 CLI Tools - Powerful command-line interface for management
  • 🔄 Graceful Shutdown - Proper cleanup of resources on exit
  • 📦 Production Ready - Compression, caching, and optimization built-in

New in v4.0.0

  • 🎨 Server-Side Rendering - Multiple template engines (EJS, Handlebars, Pug)
  • 📚 API Documentation - Interactive Swagger UI at /api/docs
  • 🔐 Enhanced Security - NoSQL injection prevention, HPP protection
  • 🚀 API Versioning - URL and header-based versioning support
  • Request Validation - Built-in validation middleware
  • 🔑 API Key Auth - Simple API key authentication
  • 📊 Response Formatting - Standardized JSON responses
  • 🎯 Pagination Helpers - Built-in pagination utilities

📋 Requirements

  • Node.js >= 18.0.0
  • npm >= 9.0.0

📦 Installation

npm install --save @misterzik/espressojs

🎯 Quick Start

1. Initialize Configuration

node cli init

This creates a config.json file with default settings:

{
  "instance": "development",
  "port": 8080,
  "hostname": "",
  "mongoDB": {
    "enabled": false,
    "port": null,
    "uri": "",
    "instance": "database"
  },
  "api": {
    "enabled": false,
    "uri": "",
    "url": "",
    "method": "GET",
    "headers": {
      "Content-Type": "application/json"
    }
  }
}

2. Create Environment File (Optional)

Create a .env file for sensitive data:

MONGO_USER=your_username
MONGO_TOKEN=your_password
API_TOKEN=your_api_token
NODE_ENV=development

3. Create Your Main File

Create index.js or espresso.js:

require("@misterzik/espressojs");

4. Create CLI File

Create cli.js:

require('@misterzik/espressojs/cli');

5. Run Your Server

Method 1: Using CLI (Recommended)

# Using the CLI
node cli run

# Or using npm scripts
npm start

Method 2: Direct Execution

node index.js

Method 3: Programmatic Usage (v3.3.6+)

If you're requiring EspressoJS as a module in your own code:

// Option A: Use built-in startServer (recommended)
const { startServer } = require('@misterzik/espressojs');
startServer();

// Option B: Manual control
const app = require('@misterzik/espressojs');
const config = require('@misterzik/espressojs/server');
app.listen(config.port, () => {
  console.log(`Server running on port ${config.port}`);
});

Note: If you're using EspressoJS programmatically (requiring it as a module), the server won't auto-start. You must either call startServer() or manually use app.listen(). See Usage Patterns Guide for details.

🛠️ CLI Commands

EspressoJS comes with a powerful CLI for managing your application:

# Show current configuration
node cli show

# Run the server
node cli run

# Run with auto-restart (development)
npm run start:watch

# Update environment settings
node cli env --instance=production --port=3000

# Validate configuration
node cli validate

# Initialize new config
node cli init

# Validate configuration
node cli validate

# Show version information
node cli version

# Get help
node cli --help

npm Scripts

EspressoJS provides convenient npm scripts for common tasks:

# Start server
npm start                    # Start with current config
npm run start:watch          # Start with auto-restart (nodemon)

# Development
npm run dev                  # Start in development mode
npm run dev:watch            # Dev mode with auto-restart

# Production
npm run prod                 # Start in production mode

# Configuration
npm run show                 # Display current config
npm run validate             # Validate config.json

Process Management:

The CLI uses a parent-child process model to keep your server running:

  • Parent process (CLI) manages the server lifecycle
  • Child process runs the Express application
  • process.stdin.resume() keeps the event loop active
  • Press CTRL+C for graceful shutdown

For more details, see CLI Usage Documentation.

📁 Project Structure

your-project/
├── config.json              # Configuration file
├── .env                     # Environment variables
├── index.js                 # Main application file
├── cli.js                   # CLI entry point
├── public/                  # Static files
│   ├── index.html
│   └── favicon.ico
├── routes/                  # Custom routes
│   ├── api.js
│   └── db.js
└── logs/                    # Application logs (auto-created)
    ├── combined.log
    ├── error.log
    ├── exceptions.log
    └── rejections.log

🔧 Configuration

Environment Instances

EspressoJS supports three pre-configured environments:

  • development - Development mode with debug logging
  • production - Production mode with optimized settings
  • global - Global/staging environment

Configuration Options

| Option | Type | Description | Default | |--------|------|-------------|---------| | instance | string | Environment instance | development | | port | number | Server port | 8080 | | hostname | string | Server hostname | "" | | publicDirectory | string | Public files directory | "/public" | | mongoDB.enabled | boolean | Enable MongoDB | false | | mongoDB.uri | string | MongoDB URI | "" | | mongoDB.port | number | MongoDB port | null | | mongoDB.instance | string | Database name | database | | api.enabled | boolean | Enable API routes | false | | api.uri | string | External API URI | "" | | api.method | string | HTTP method | GET | | api.headers | object | Request headers | {"Content-Type": "application/json"} | | api.timeout | number | Request timeout (ms) | 30000 | | api.retries | number | Retry attempts (0-5) | 0 |

Multiple API Endpoints

EspressoJS supports multiple API configurations using the pattern api, api2, api3, etc.:

{
  "api": {
    "enabled": true,
    "uri": "https://api.example.com/v1/",
    "method": "GET",
    "headers": {
      "Content-Type": "application/json"
    }
  },
  "api2": {
    "uri": "https://api.example.com/v1/news",
    "method": "GET",
    "headers": {
      "Content-Type": "application/json",
      "Authorization": "Bearer TOKEN"
    }
  },
  "api3": {
    "enabled": true,
    "uri": "https://api.example.com/api",
    "method": "POST"
  }
}

Using Multiple APIs in Your Code:

const { apiManager } = require('./index');

// Request from specific API
const data = await apiManager.request('api2', '/endpoint');

// Parallel requests
const [data1, data2] = await Promise.all([
  apiManager.request('api', '/users'),
  apiManager.request('api2', '/news')
]);

// Check if API exists
if (apiManager.hasAPI('api3')) {
  const data = await apiManager.request('api3', '/data');
}

📖 Full Multiple APIs Guide

🏥 Health Check Endpoints

EspressoJS includes built-in health check endpoints:

  • GET /health - Comprehensive health check with system metrics
  • GET /ready - Readiness probe for orchestration
  • GET /alive - Liveness probe for monitoring

Example response from /health:

{
  "status": "OK",
  "timestamp": "2024-01-01T00:00:00.000Z",
  "uptime": 123.456,
  "environment": "development",
  "memory": {
    "total": 16777216000,
    "free": 8388608000,
    "usage": {...}
  },
  "cpu": {
    "cores": 8,
    "loadAverage": [1.5, 1.3, 1.2]
  },
  "database": {
    "status": "connected",
    "name": "myDatabase"
  }
}

🔒 Security Features

EspressoJS includes enterprise-grade security features:

  • Helmet.js - Sets secure HTTP headers
  • Rate Limiting - Prevents abuse and DDoS attacks
  • CORS - Configurable cross-origin resource sharing
  • Input Validation - Express-validator integration
  • XSS Protection - Cross-site scripting prevention
  • Content Security Policy - CSP headers configured

📝 Logging

Winston-based logging with multiple transports:

const logger = require('./server/utils/logger');

logger.info('Information message');
logger.warn('Warning message');
logger.error('Error message');
logger.debug('Debug message');
logger.http('HTTP request');

Logs are automatically written to:

  • Console (formatted with colors)
  • logs/combined.log (all logs)
  • logs/error.log (errors only)
  • logs/exceptions.log (uncaught exceptions)
  • logs/rejections.log (unhandled rejections)

🔌 MongoDB Integration

Enable MongoDB in your config.json:

{
  "mongoDB": {
    "enabled": true,
    "uri": "cluster0.mongodb.net",
    "port": null,
    "instance": "myDatabase"
  }
}

Set credentials in .env:

MONGO_USER=your_username
MONGO_TOKEN=your_password

🛣️ Custom Routes

Create custom routes in the routes/ directory:

routes/api.js:

const express = require('express');
const router = express.Router();

router.get('/users', (req, res) => {
  res.json({ users: [] });
});

module.exports = router;

🚀 Deployment

Production Mode

# Set production environment
node cli env --instance=production --port=80

# Run in production
npm run prod

Environment Variables

Set these in production:

NODE_ENV=production
PORT=80
MONGO_USER=prod_user
MONGO_TOKEN=prod_password

📊 NPM Scripts

{
  "scripts": {
    "start": "node cli run",
    "dev": "node cli env --instance=development --port=8080 && node cli run",
    "prod": "node cli env --instance=production --port=80 && node cli run",
    "show": "node cli show"
  }
}

🤝 Contributing

Contributions are welcome! Please feel free to submit a Pull Request.

📄 License

MIT © MisterZik

🔗 Links

💡 Support

If you find EspressoJS helpful, please consider giving it a ⭐ on GitHub!