Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@antv/g-plugin-canvas-renderer
Advanced tools
使用 CanvasRenderingContext2D 绘制各类图形。
包含了两个插件:
CanvasRendererPlugin 实现了以下 hook:
beginFrame
保存上下文,如果开启了脏矩形渲染,创建脏矩形对应的 clip rect 并擦除renderFrame
绘制各个图形,如果开启了脏矩形渲染,仅在该区域内重绘endFrame
恢复上下文LoadImagePlugin 负责加载图片,实现了以下 hook:
mounted
Image 图形首次进入画布,异步加载包含的图片attributeChanged
如果 Image 图形的图片地址发生改变,重新加载图片FAQs
A G plugin of renderer implementation with Canvas2D API
The npm package @antv/g-plugin-canvas-renderer receives a total of 36,129 weekly downloads. As such, @antv/g-plugin-canvas-renderer popularity was classified as popular.
We found that @antv/g-plugin-canvas-renderer demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.