
Security News
/Research
Wallet-Draining npm Package Impersonates Nodemailer to Hijack Crypto Transactions
Malicious npm package impersonates Nodemailer and drains wallets by hijacking crypto transactions across multiple blockchains.
@axa-ch/accordion
Advanced tools
An accordion UI element hides a text or other piece of information by default and can reveal them if requested by user gesture.
Boolean attribute disabled
disables the accordion (default: false). Users can not open or close the accordion anymore. However, it is still possible to programmatically open the accordion by way of the open
attribute.
Boolean attribute open
opens the accordion when set to a truthy value (default: false). This is a second way to open the accordion besides clicking on it. This can be useful when you use the disabled
attribute.
Boolean attribute small
controls a smaller version of the accordion (default: false).
String-valued title
sets the title of the accordion.
The ariaLevel
attribute which defines the hierarchical level of an element within a structure.
String-valued icon
sets the additional icon of the accordion according to a valid <svg>...</svg>
value. Leave unset if no icon is required.
The function-valued attribute onStateChange
can be used as a callback prop for React and other frameworks. The passed-in function gets called whenever the accordion's state changes, and it receives a Boolean parameter that mirrors the open
property value.
TThe custom event axa-state-change is fired on the component itself whenever onStateChange is called (see above). The event.detail value again mirrors the open
property value.
FAQs
The accordion component for the AXA Pattern Library
The npm package @axa-ch/accordion receives a total of 0 weekly downloads. As such, @axa-ch/accordion popularity was classified as not popular.
We found that @axa-ch/accordion demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 49 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
/Research
Malicious npm package impersonates Nodemailer and drains wallets by hijacking crypto transactions across multiple blockchains.
Security News
This episode explores the hard problem of reachability analysis, from static analysis limits to handling dynamic languages and massive dependency trees.
Security News
/Research
Malicious Nx npm versions stole secrets and wallet info using AI CLI tools; Socket’s AI scanner detected the supply chain attack and flagged the malware.