npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

cloudfrontize-lambda-at-edge

v1.1.1

Published

Deprecated: Simulate your Lambda@Edge functions locally for on a CloudFront-like static server.

Downloads

828

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

felipecarrillo100felipecarrillo100

Keywords

cloudfrontawslambda-at-edgecompressionbrotlistatic-serveremulatorlocal-development

Readme

cloudfrontize-lambda-at-edge

Sponsor

⚠️ DEPRECATION NOTICE: This package (cloudfrontize-lambda-at-edge) has been officially deprecated in favor of the new, cloudfrontize package. The scope of this project has grown beyond just Lambda@Edge to now include CloudFront Functions and more features to come. By consolidating into a single package, we can ensure faster updates, better maintenance, and a more robust experience for all CloudFront customization needs. Please migrate to the new package to receive the latest features and security patches.

Quick Migration Steps

If you used cloudfrontize-lambda-at-edge migration is easy:

  1. Uninstall the old package (this package):
npm uninstall cloudfrontize-lambda-at-edge
  1. Install the new package:
npm install cloudfrontize

The rest works just as before!

📣 Stop bowing to the deployment bar!

Rule the Edge and become the Hero of the Cloud. Escape the "Deploy-and-Pray" cycle. We’ve all been there: you tweak one security header, hit "Deploy," and... you wait. For 15 agonizing minutes, you watch a spinning "In Progress" status as AWS propagates your code globally. If there’s a tiny typo? You won't know until you hit a 502 Bad Gateway and go hunting through CloudWatch logs buried in a random region.

It’s a workflow that kills momentum and turns "quick fixes" into afternoon-long ordeals.

👑 Enter CloudFrontize

The ultimate developer productivity tool for AWS CloudFront and Lambda@Edge. It transforms your local static server into a high-fidelity AWS Edge Location simulation.

  • Kill the Lag: Test in milliseconds, not minutes.
  • Catch the 502s Locally: Validate headers and URI rewrites before they ever touch an AWS environment.
  • Stay in the Flow: Stop wasting hours in the "Deploy → Wait → Check Logs → Fail" loop.

Start shipping rock-solid Edge logic with total confidence.

⚡ Why Developers & SysAdmins Need This

The CloudFront/Lambda@Edge development loop is notoriously painful. Propagation takes minutes, debugging requires digging through CloudWatch, and a single header typo can bring down your entire production distribution with a 502 Bad Gateway.

CloudFrontize eliminates the wait and the risk:

  • Zero-Config Integration: If you know how to use Vercel's serve package, you already know how to use cloudfrontize.
  • Real-Time Hot Reloading: Tweak your URI rewrites or security headers and see the results instantly on browser refresh. No packaging, no uploading, no waiting for the "In Progress" spinner.
  • Debug directly to the console: Stop hunting for logs in hidden CloudWatch streams across random regions. See your console.log outputs and execution errors live in your terminal.
  • Production Fidelity: Emulates in detail CloudFront-specific features & quirks, like the 10MB auto-compression limit, header blacklisting, and URI normalization.
  • RequestBody Support: Access the request payload in your hooks for webhook validation or body-based routing.
  • The "Safety Net": Catch forbidden header mutations or invalid response structures locally. Use --strict to auto-fail requests that violate AWS limits (40KB body, 1MB generated response).

⚖️ Value Proposition & Market Comparison

While tools like serverless-offline or SAM CLI are great for standard Lambda functions, they often fall short when it comes to the specific, high-stakes constraints of the AWS Edge.

| Feature | CloudFrontize | Other Local Simulators | | --- | --- | --- | | Edge Fidelity | 🎯 Built specifically for the 4 CloudFront triggers. | ⚠️ Usually limited to generic API Gateway events. | | Limits Enforcement | ✅ Enforces 40KB body & 1MB response limits. | ❌ Generally ignores Edge-specific size limits. | | Header Validation | ✅ Warns/Fails on forbidden header mutations. | ❌ Allows illegal header modifications. | | Config Overhead | 🚀 Zero. No YAML or JSON config needed. | 📝 Requires complex template/config files. | | Dev Loop | ⚡ Instant hot-reloading. | 🐢 Slow warm-up times or missing hot-reload. | | Variable Baking | ✅ Production-ready build step included. | ❌ Manual build scripts required. |

CloudFrontize is not just a runner; it's a Linter at the Edge, ensuring your code is valid before the 15-minute propagation wait.

📦 Install & Go

Get up and running in seconds. No complex AWS IAM roles, no stack traces—just your code, running locally.

Install it Globally:

npm install -g cloudfrontize-lambda-at-edge

Once installed, you can rule the Edge from any directory by simply typing cloudfrontize ./www (specifying your static folder).

Point it at your static files folder (./www, ./dist or ./public) and point to your Lambda@Edge .js file. CloudFrontize handles the rest.

cloudfrontize ./folder --edge ./lambda-at-age-logic.js

OR

npx cloudfrontize-lambda-at-edge ./folder --edge ./lambda-at-age-logic.js

🎓 CloudFrontize Academy (Tutorial)

New to Lambda@Edge? We've built a comprehensive, hands-on tutorial to take you from Newbie to Production Pro.

Our CloudFrontize Academy includes 10 thematic exercises covering:

  • Module 1: Foundations (Security Headers, Redirects, Normalization)
  • Module 2: Origin Intelligence (A/B Testing, Geo-Localization, Header Cleaning)
  • Module 3: Edge Computing (Custom Auth, Maintenance Pages, Payload Inspection)
  • Module 4: Production Workflows (Variable Baking & Deployment)

Each exercise comes with a Business Scenario, Starter Template, and Full Solution.

🛠️ CLI Options & Configuration

cloudfrontize is designed to be a drop-in replacement for the popular serve, we all know and love, but with "Edge Superpowers!"

| Flag | Description | Default | | --- |-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|----------------------------------------------------------------------------------------------------| | -m, --mode <mode> | Routing behavior. website (automatically serves index.html for folders), rest (folders return 403). Use website for standard S3 Website endpoints (auto-index). Use rest for High-Fidelity S3 REST/OAC endpoints (strict pathing, default). | rest | | --log <path> | Path to log file for Lambda@Edge console output (Overwrites on startup) | none | | --headers <path> | Path to JSON file with default request headers (e.g., for Geo/Auth simulation) | none | | -e, --edge <path> | Path to a Lambda@Edge module or directory to simulate | none | | --cff <path> | Path to a CloudFront Function file or directory to simulate | none | | -E, --env <path> | Path to environment file (Strict: Reserved AWS variables only) | null | | -b, --bake <path> | Path to variables file for __VAR__ string replacement | null | | -o, --output <path>| Output the baked .js file(s) for production deployment | null | | -p, --port <number> | Port to listen on | 3000 | | -l, --listen <uri> | Listen URI (overrides --port) | 3000 | | -s, --single | SPA mode — rewrite all 404s to index.html | off | | -C, --cors | Enable Access-Control-Allow-Origin: * | off | | -d, --debug | Show Lambda execution logs and URI rewrites | off | | -u, --no-compression | Disable automatic on-the-fly compression | off | | --no-etag | Disable ETag headers | off | | -L, --no-request-logging | Mute startup logs | off | | --strict | Enforce strict CloudFront limits (40KB body, 1MB response, headers) | off | | -V, --version | Output the version number | off |

🚀 Lambda@Edge Integration

Since there is no AWS CloudFront Console to configure your triggers locally, it is mandatory to include exports.hookType in your JavaScript file. If this line is missing, CloudFrontize will not know when to fire your function and will ignore the file.

Exported Hook Types

  • 'origin-request': Intercept before forwarding to the origin. Often used for URI rewrites.
  • 'viewer-request': Intercept before cache. Often used for redirects or authentication.
  • 'origin-response': Intercept after the origin responds. Often used to inject Cache-Control headers.
  • 'viewer-response': Intercept before sending to the viewer. Often used to inject security headers.

⚡ CloudFront Functions (CFF) New!

CloudFront Functions provide a lightweight, high-performance scripting environment for high-scale transformations. cloudfrontize simulates the CFF environment with strict fidelity to AWS limits (1ms CPU, 10KB code size) and restricted module access (no require, fs, etc.).

Automatic Hook Detection

When pointing --cff to a directory, files must follow a strict naming convention to be recognized:

  • viewer-request*.js: Executes before Lambda@Edge viewer-request and origin-request.
  • viewer-response*.js: Executes after Lambda@Edge viewer-response.

Files within a directory are executed in lexicographical order.

CFF Example (viewer-request-redirect.js)

function handler(event) {
    var request = event.request;
    var uri = request.uri;

    // Direct response (short-circuits the pipeline)
    if (uri === '/old-path') {
        return {
            statusCode: 301,
            statusDescription: 'Moved Permanently',
            headers: {
                'location': { value: '/new-path' }
            }
        };
    }

    return request;
}

🐕 Featured Example

The "Paws & Pixels" Secure Gallery

We’ve bundled a complete, interactive sample to show you the power of CloudFrontize. It protects a premium dog photography gallery using a viewer-request authentication gate.

Launch the Secure Demo

Clone the GitHub repo

git clone https://github.com/felipecarrillo100/cloudfrontize-lambda-at-edge.git

Then run

cloudfrontize ./www -e ./samples/medium/lambda-edge-authorization.js -d -C
  • The www folder contains the sample files (html, js, css, etc.)
  • The lambda-edge-authorization.js contains the lambda@edge logic
  • The -d option enables debug messages while -C enables CORS
  • Default port is 3000, you can now open your browser at http://localhost:3000/

The Sample Logic (lambda-edge-authorization.js)

'use strict';

/**
 * Lambda@Edge Example: Basic Authentication (viewer-request)
 */

// MANDATORY: Tells CloudFrontize which trigger point to simulate
exports.hookType = 'viewer-request';

exports.handler = (event, context, callback) => {
    const request = event.Records[0].cf.request;
    const headers = request.headers;

    // Credentials for demo purposes
    const user = "admin";
    const password = "pass";

    const authString = "Basic " + Buffer.from(user + ":" + password).toString("base64");

    if (
        typeof headers.authorization === "undefined" ||
        headers.authorization[0].value !== authString
    ) {
        const response = {
            status: "401",
            statusDescription: "Unauthorized",
            body: "Unauthorized",
            headers: {
                "www-authenticate": [{
                    key: "WWW-Authenticate",
                    value: 'Basic realm="Protected Area"'
                }],
            },
        };

        callback(null, response);
        return;
    }

    callback(null, request);
};

🛡️ Engineered for Fidelity

Don't just simulate the Edge—master it. CloudFrontize is built to mirror the high-stakes environment of a live AWS PoP (Point of Presence).

  • ⚡ Native Async/Await Support: Whether your middleware is a simple redirect or a complex, asynchronous database lookup, CloudFrontize handles async handlers and Promises with the same grace as the live Lambda@Edge runtime.
  • 🧩 Multi-Hook Testing: Pass a directory to --edge and CloudFrontize will automatically mount every valid Lambda it finds. Orchestrate your Viewer Request, Origin Request, and Response hooks in one unified local environment.
  • 📦 RequestBody Access: Use event.Records[0].cf.request.body to access base64 encoded payloads. We support the standard AWS buffering logic.
  • 🚫 Strict Header & Body Validation: Use --strict to identify "Read-only" or "Forbidden" headers for both request and response hooks, as well as the 40KB viewer-request body limit and the 1MB generated response limit in real-time. We trigger 502 Bad Gateway errors locally for the same illegal mutations that fail in production.
  • 🎭 Mocked Context & Events: We provide a high-fidelity event and context object, ensuring your logging, metrics, and custom error-handling tools work exactly as they would in production.

License

CloudFrontize is licensed under the PolyForm Noncommercial 1.0.0. For the full legal text and specific terms, please refer to the LICENSE file in this package.

  • ✅ Free for Individuals & Education: 100% free for personal projects, open-source contributions, students, and researchers. This includes full access to the CloudFrontize Academy.
  • 💼 Requires a Commercial License: Use by for-profit organizations, or for work performed on behalf of a for-profit entity, requires a paid Commercial License.
  • ⏳ 30-Day Business Trial: We offer a one-month free evaluation period for professional teams. Integrate CloudFrontize into your workflow, experience the "Zero-Wait" deployment cycle, and measure your team's productivity gains before committing.

Maintaining high-fidelity AWS emulation takes significant time. If your company is saving thousands of dollars in "developer-wait-time" by using this tool, please support its continued development.

Sponsor

⚖️ Legal & Disclaimer

CloudFrontize is a local simulation tool. While it is designed to mirror AWS CloudFront and Lambda@Edge behavior as closely as possible, it is not an official AWS product.

THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND. Testing on CloudFrontize does not guarantee success on live AWS infrastructure. The author is not liable for any production downtime, data loss, or financial damages resulting from the use of this tool. Always validate your logic in an AWS staging environment before a full production rollout.

Donations & Sponsoring

Creating and maintaining open-source libraries is a passion of mine. If you find this cloudfrontize useful and it saves you time, please consider supporting its development. Your contributions help keep the project active and motivated!

Every bit of support—whether it's sponsoring on GitHub, a coffee, a star, or a shout-out, is deeply appreciated. Thank you for being part of the community!

🏢 Corporate & Business Use

Does your team use CloudFrontize to speed up production workflows? Please support the project by selecting the Corporate Tier on GitHub Sponsors.

  • Standard Business License: $25/month per team (for up to 5 users).
  • Enterprise: Contact me for a one-time perpetual site license.