Security News
Research
Supply Chain Attack on Rspack npm Packages Injects Cryptojacking Malware
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
@antv/g-plugin-canvas-renderer
Advanced tools
A G plugin of renderer implementation with Canvas2D API
使用 CanvasRenderingContext2D 绘制各类图形。
包含了两个插件:
CanvasRendererPlugin 实现了以下 hook:
beginFrame
保存上下文,如果开启了脏矩形渲染,创建脏矩形对应的 clip rect 并擦除renderFrame
绘制各个图形,如果开启了脏矩形渲染,仅在该区域内重绘endFrame
恢复上下文LoadImagePlugin 负责加载图片,实现了以下 hook:
mounted
Image 图形首次进入画布,异步加载包含的图片attributeChanged
如果 Image 图形的图片地址发生改变,重新加载图片FAQs
A G plugin of renderer implementation with Canvas2D API
The npm package @antv/g-plugin-canvas-renderer receives a total of 0 weekly downloads. As such, @antv/g-plugin-canvas-renderer popularity was classified as not popular.
We found that @antv/g-plugin-canvas-renderer demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.
Security News
Sonar’s acquisition of Tidelift highlights a growing industry shift toward sustainable open source funding, addressing maintainer burnout and critical software dependencies.