{"id":14989659,"url":"https://github.com/ioajs/ioa","last_synced_at":"2026-01-30T07:09:49.993Z","repository":{"id":55364568,"uuid":"142727874","full_name":"ioajs/ioa","owner":"ioajs","description":"Node.js multi-application horizontal scaling, componentized framework","archived":false,"fork":false,"pushed_at":"2022-05-30T06:50:24.000Z","size":606,"stargazers_count":2,"open_issues_count":0,"forks_count":0,"subscribers_count":0,"default_branch":"master","last_synced_at":"2025-10-27T14:57:14.355Z","etag":null,"topics":["framework","koa","koa2","node-framework","nodejs"],"latest_commit_sha":null,"homepage":"","language":"TypeScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/ioajs.png","metadata":{"files":{"readme":"README-zh.md","changelog":"History.md","contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2018-07-29T03:31:39.000Z","updated_at":"2024-01-17T02:34:11.000Z","dependencies_parsed_at":"2022-08-14T22:22:39.109Z","dependency_job_id":null,"html_url":"https://github.com/ioajs/ioa","commit_stats":null,"previous_names":[],"tags_count":3,"template":false,"template_full_name":null,"purl":"pkg:github/ioajs/ioa","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ioajs%2Fioa","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ioajs%2Fioa/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ioajs%2Fioa/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ioajs%2Fioa/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/ioajs","download_url":"https://codeload.github.com/ioajs/ioa/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ioajs%2Fioa/sbom","scorecard":{"id":492637,"data":{"date":"2025-08-11","repo":{"name":"github.com/ioajs/ioa","commit":"cf81bc987eb9bb21fc11dba96fe1a9237080bec6"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":2.4,"checks":[{"name":"Maintained","score":0,"reason":"0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Code-Review","score":0,"reason":"Found 0/30 approved changesets -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"SAST","score":0,"reason":"no SAST tool detected","details":["Warn: no pull requests merged into dev branch"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"Token-Permissions","score":-1,"reason":"No tokens found","details":null,"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"Dangerous-Workflow","score":-1,"reason":"no workflows found","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"Pinned-Dependencies","score":-1,"reason":"no dependencies found","details":null,"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Security-Policy","score":0,"reason":"security policy file not detected","details":["Warn: no security policy file detected","Warn: no security file to analyze","Warn: no security file to analyze","Warn: no security file to analyze"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE:0","Info: FSF or OSI recognized license: MIT License: LICENSE:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Signed-Releases","score":-1,"reason":"no releases found","details":null,"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Branch-Protection","score":0,"reason":"branch protection not enabled on development/release branches","details":["Warn: branch protection not enabled for branch 'master'"],"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"Vulnerabilities","score":5,"reason":"5 existing vulnerabilities detected","details":["Warn: Project is vulnerable to: GHSA-qxrj-hx23-xp82","Warn: Project is vulnerable to: GHSA-wf5p-g6vw-rhxx","Warn: Project is vulnerable to: GHSA-jr5f-v2jv-69x6","Warn: Project is vulnerable to: GHSA-jchw-25xp-jwwc","Warn: Project is vulnerable to: GHSA-cxjh-pqwp-8mfp"],"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-19T19:36:07.619Z","repository_id":55364568,"created_at":"2025-08-19T19:36:07.619Z","updated_at":"2025-08-19T19:36:07.619Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":28907291,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-01-30T06:42:00.998Z","status":"ssl_error","status_checked_at":"2026-01-30T06:41:58.659Z","response_time":66,"last_error":"SSL_read: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["framework","koa","koa2","node-framework","nodejs"],"created_at":"2024-09-24T14:18:43.250Z","updated_at":"2026-01-30T07:09:49.975Z","avatar_url":"https://github.com/ioajs.png","language":"TypeScript","readme":"## ioa\r\n\r\n\u003e 随着 Serverless 技术的逐步成熟，为了获得更快的应用冷启动速度，以及更友好的 IDE、TypeScript 静态支持，该项目可能会被弃用。\r\n\r\n不同于常规的 Web 框架，ioa.js 仅仅是一个支持模块动态加载的微型框架。遵循按需引入原则，其核心功能足够的轻量，且不集成任何与网络相关的服务。\r\n\r\n作为一个基础框架，与很多大型框架不同的是，ioa.js 框架核心功能仅包含模块加载和动态编排，我们不想过度约束开发者的行为，因为约束会不可避免的产生局限性。\r\n\r\nioa.js 中的应用由多个组件构成，每个组件都拥有独立的作用域，从而尽量避免资源冲突。通过声明式的依赖关系配置模型，实现跨多个应用共享组件资源。\r\n\r\n由于基于分级加载策略，因此开发者可以自由的管理应用启动阶段的生命周期，而不必受限于常规框架的种种束缚。\r\n\r\n使用 ioa 可以按自己的喜好轻松实现定制化框架，也可以与现有框架搭配使用。该项目倾向于使用 Koa 中间件风格，对于 Express 也同样适用。\r\n\r\n### 特性\r\n\r\n- 使用纯异步模块加载方式；\r\n\r\n- 组件即应用，采用组件化、水平扩展架构；\r\n\r\n- 每个组件拥有相对隔离的组件作用域、一致的代码结构和功能；\r\n\r\n- 支持应用与组件模式自由切换，满足平滑过渡、渐进式扩展需求；\r\n\r\n- 支持模块分级装载，可灵活编排模块的装载顺序，实现启动阶段的全生命周期管理；\r\n\r\n- 基于订阅/发布机制实现组件依赖注入和多级依赖复用，组件之间通过自由组合，可合成新的组件；\r\n\r\n- 在使用加载器时，可以将应用中的目录、js 文件、函数视为可定制的树状对象结构；\r\n\r\n- 支持使用 npm 发布、管理组件间的版本和依赖关系；\r\n\r\n### Install\r\n\r\n```\r\nnpm install ioa\r\n```\r\n\r\n### Usage\r\n\r\n```js\r\nimport { createApp } from \"ioa\";\r\n\r\ncreateApp(\"./main\");\r\n```\r\n\r\n### 目录结构\r\n\r\n以下目录结构仅为约定，ioa 框架本身并不限制目录结构和加载等级。虽然开发者可以在 index.js 文件中自由定义每个应用的目录结构，但是只有遵循统一的约定，才能更好的实现组件资源共享。\r\n\r\n```\r\nproject\r\n    |\r\n    |─  index.js                 应用入口\r\n    |\r\n    |-- main    app    app    ...\r\n    |    |\r\n    |    | -- index.js           分级装载配置文件\r\n    |    |\r\n    |    • \u003c--- 0\r\n    |    • \u003c--- 5\r\n    |    |\r\n    |    10 -- config             配置文件目录\r\n    |    |    |- default.js       公用默认配置\r\n    |    |    |- localhost.js     本地环境配置\r\n    |    |    |- development.js   开发环境配置\r\n    |    |    └─ production.js    生产环境配置\r\n    |    |    └─ $name.js         自定义环境配置\r\n    |    |\r\n    |    • \u003c--- 15\r\n    |    • \u003c--- 16\r\n    |    |\r\n    |    20 -- model              模型目录\r\n    |    |    |- $name.js\r\n    |    |    └─ ...\r\n    |    |\r\n    |    • \u003c--- 26\r\n    |    |\r\n    |    30 -- middleware         中间件目录\r\n    |    |    |- $name.js\r\n    |    |    └─ ...\r\n    |    |\r\n    |    40 -- service            抽象服务层\r\n    |    |    |- $name.js\r\n    |    |    └─ ...\r\n    |    |\r\n    |    • \u003c--- 42\r\n    |    • \u003c--- 45\r\n    |    |\r\n    |    50 -- controller         控制器目录\r\n    |    |    |-- home            多层控制器嵌套\r\n    |    |    |    |- $name.js\r\n    |    |    |    └─ ...\r\n    |    |    |- ...\r\n    |    |    |\r\n    |    |    └─ $name.js\r\n    |    |\r\n    |    • \u003c--- 60\r\n    |    • \u003c--- 70\r\n    |    |\r\n    |    80 -- router.js          路由配置文件\r\n    |    |\r\n    |    ：\r\n    |\r\n    |-- logger                    日志存档，按日期分组保存\r\n    |\r\n    |-- static                    静态资源目录\r\n    |\r\n```\r\n\r\n### createApp(path, ...)\r\n\r\n第一个 path 被视为主应用，子组件的配置项在主应用的 config 目录中统一配置，框架自动分发到对应的子组件。\r\n\r\n- path `string` - 应用路径，支持相对路径或绝对路径\r\n\r\n\r\n### 分级装载\r\n\r\nioa 中引入了目录和模块装载等级的概念，用于管理应用在启动阶段的生命周期。\r\n\r\n在传统框架中通常通过钩子函数来执行特定阶段的代码，生命周期钩子的优点是相对简单、易于理解，缺点是缺乏灵活性、扩展性。\r\n\r\n由于 ioa 使用自定义模块分级装载策略来管理生命周期，这使得开发者可以在框架装载的任意阶段创建无限个平级或上下级装载点，自由管理装载流程。\r\n\r\n\u003e 有时候在同级加载项之间依然存在依赖关系，这种情况下通常可以直接使用 import 来提升加载时序，或者增加新的挂载点\r\n\r\n### 约定装载等级\r\n\r\n为了在多个组件间建立统一的加载生命周期，实现跨组件兼容，需要按约定来加载模块。\r\n\r\nioa 约定了几个常见目录、模块的装载等级如下：\r\n\r\n| Node       | Level |\r\n| ---------- | ----- |\r\n| config     | 10    |\r\n| model      | 20    |\r\n| middleware | 30    |\r\n| service    | 40    |\r\n| controller | 50    |\r\n| event      | 60    |\r\n| router     | 80    |\r\n\r\n### 装载项目入口文件 index.js\r\n\r\n装置配置项支持函数和声明式两种风格\r\n\r\n```js\r\napp.component(name: string);\r\n\r\napp.import(options: object); // 导入依赖\r\n\r\napp.export(options: object); // 导出依赖\r\n```\r\n\r\n- `options` _object_\r\n\r\n  - `$name` _object, boolean_ - 装载选项，$name 对应目录名称或包含.js、.json 后缀的文件名。当值为 false 时表示不装载该目录或模块\r\n\r\n    - `level` _number_ - 加载等级\r\n\r\n    - `action(options)` _function_ - 函数加载项，不需要关联目录和文件的纯函数加载点\r\n\r\n    - `module(data, name)` _function_ - 模块加载完毕的回调函数，this 指向当前层级容器。如果无数据返回，则该模块输出为空。\r\n\r\n      - `data` \\* - 当前模块导出数据\r\n\r\n      - `name` _string_ - 当前模块名称，不含后缀\r\n\r\n    - `directory(data, name)` _function_ - 目录加载完毕的回调函数，支持子集继承。如果无数据返回，则该目录结构不会被创建。\r\n\r\n      - `data` _object_ - 当前目录下所有子集导出数据集合\r\n\r\n      - `name` _string_ - 当前目录名称\r\n\r\n    - `before(options)` _function_ - 当前等级下所有目录、模块在加载前执行的钩子函数（仅在当前层级触发，不对子集继承）\r\n\r\n      - `data` \\* - 当前目录、模块导出数据\r\n\r\n      - `dirList` _array_ - 当前目录下的文件名列表\r\n\r\n      - `parents` _object_ - 父节点\r\n\r\n      - `root` _object_ - 根节点\r\n\r\n    - `after(options)` _function_ - 当前等级下所有目录、模块在加载后执行的钩子函数（仅在当前层级触发，不对子集继承），参数与 before(options)一致\r\n\r\n### 应用配置示例：\r\n\r\n```js\r\nimport { main } from \"ioa\";\r\n\r\nmain.component(\"@ioa/config\");\r\nmain.component(\"@ioa/http\");\r\n\r\nmain.import({\r\n  model: {\r\n    level: 20,\r\n  },\r\n  middleware: {\r\n    level: 30,\r\n  },\r\n  \"test.js\": {\r\n    level: 30,\r\n  },\r\n  abc: {\r\n    level: 30,\r\n    // 函数型挂载点\r\n    action() {\r\n      return 123;\r\n    },\r\n  },\r\n  controller: {\r\n    level: 50,\r\n  },\r\n});\r\n\r\nmain.export({\r\n  loads: { level: 20 },\r\n});\r\n```\r\n\r\n```js\r\n// 声明式示例\r\nexport default {\r\n  component: [\"@ioa/config\", \"@ioa/http\"],\r\n  import: {\r\n    model: {\r\n      level: 20,\r\n    },\r\n    extend: {\r\n      level: 20,\r\n    },\r\n    other: {\r\n      level: 30,\r\n    },\r\n    test: {\r\n      level: 30,\r\n      action() {\r\n        return 666;\r\n      },\r\n    },\r\n  },\r\n  export: {\r\n    loads: { level: 20 },\r\n  },\r\n};\r\n```\r\n\r\n### 组件作用域\r\n\r\n组件按功能可分为应用类组件和扩展类组件，支持相对路径、绝对路径、模块路径三种导入方式。\r\n\r\n使用 ioa.app()可以获取当前组件作用域实例，好处是在改变应用或组件名称时，无需修改代码，添加 name 参数可获取指定的应用实例。\r\n\r\n```js\r\nimport ioa from \"ioa\";\r\n\r\nconst app = ioa.app(); // 无参数时获取当前组件作用域实例\r\nconst user = ioa.app(\"user\"); // 获取指定组件作用域实例\r\n```\r\n\r\n### 组件化\r\n\r\n在我们的设想中，期望应用更多的以组件形态构建，实现功能代码解耦，达到即插即用的效果。因此，我们尝试在 ioa.js 中实现这个功能，即将每个组件视为独立应用，并在组件间建立隔离和共享机制。\r\n\r\n传统框架中通常使用单点容器，将所有资源都挂载到一个根节点上。随着应用代码量的不断增加，项目变得臃肿，依赖关系也越来越模糊，命名冲突问题也会越发严重，给后续项目扩展和管理带来很大压力。在 ioa 中通过组件机制，对业务逻辑进行进一步拆分和细化后，可以极大缓解上述问题，开发者也可以根据自身需求或个人喜好自由的调整拆分粒度。\r\n\r\n很多主流框架出于资源冲突的考虑，通常放弃了在插件中对 router 和 controller 的支持，主要原因是在单个 app 容器中很难优雅的解决资源冲突问题。ioa 使用多个 app、组件间资源隔离设计方案，开发者只需要访问当前组件内的 app 对象即可动态指向当前组件，避免访问具体组件名带来的负担， 组件化通过获取堆栈调用路径，自动定位当前组件作用域。\r\n\r\n### 微服务化\r\n\r\n由于组件应用相互隔离，在无外部依赖的状态下，每个组件都可以作为独立应用单独运行。这种高度解耦特性使得在渐进式开发中，可以轻松的从单体应用切换到微服务化架构。\r\n\r\n### 配置文件\r\n\r\nioa 支持通过系统环境变量来动态切换配置文件，并与 default 配置文件合并。\r\n\r\n默认的环境变量名称为 localhost、development、production，缺省状态下以 production 作为环境变量。\r\n\r\n框架并没有限制必须使用指定的环境变量名，实际上开发者可以自由的定义环境变量名和增加任意数量的环境变量配置文件，只要确保环境变量名与配置文件名命名一致即可自动装载对应的配置文件。\r\n\r\n### 系统环境变量\r\n\r\nioa 支持 NODE_ENV 和 PORT 两个外部环境变量，可选择全局持久化环境变量和命令行临时环境变量两种方式进行赋值。\r\n\r\n#### NODE_ENV\r\n\r\n通过配置全局的 NODE_ENV 环境变量，实现不同运行环境下的差异化配置。\r\n\r\nNODE_ENV 通常被定义为全局变量，如果需要临时切换环境变量配置文件，则应该使用临时变量。\r\n\r\n#### 配置示例\r\n\r\n命令行中临时环境变量的优先级要高于系统环境变量，因此可以通过命令行传参的方式覆盖系统环境变量。\r\n\r\n#### 示例\r\n\r\n在生产环境下临时切换到本地环境\r\n\r\nLinux\r\n\r\n```sh\r\nNODE_ENV=localhost node index.js\r\n```\r\n\r\nPowerShell\r\n\r\n```ps\r\n$env:NODE_ENV='localhost'; node index.js\r\n```\r\n\r\nCMD\r\n\r\n```ps\r\nset NODE_ENV='localhost' \u0026 node index.js\r\n```\r\n","funding_links":[],"categories":[],"sub_categories":[],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fioajs%2Fioa","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fioajs%2Fioa","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fioajs%2Fioa/lists"}