Research
Security News
Malicious npm Package Targets Solana Developers and Hijacks Funds
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
@biomejs/wasm-web
Advanced tools
v1.8.3 (2024-06-27)
Fix #3104 by suppressing node warnings when using biome migrate
. Contributed by @SuperchupuDev
Force colors to be off when using the GitHub reporter to properly create annotations in GitHub actions (#3148). Contributed by @Sec-ant
nursery/useDeprecatedReason
rule. Contributed by @vohoanglong0107.useImportExtensions
rule. Contributed by @drdaemosuseConsistentArrayType
and useShorthandArrayType
now ignore Array
in the extends
and implements
clauses. Fix #3247. Contributed by @Conaclospackage.json
. Contributed by @ematipicouseArrowFunction
rule now preserves a trailing comma when there is only a single type parameter in the arrow function and JSX is enabled. Fixes #3292. Contributed by @Sec-antEnhance tailwind sorting lint rule #1274 with variant support.
Every preconfigured variant is assigned a weight
that concurs on establishing the output sorting order.
Since nesting variants on the same utility class is possible, the resulting weight
is the Bitwise XOR of all the variants weight for that class.
Dynamic variants (e.g. has-[.custom-class]
, group-[:checked]
) are also supported and they take the weight
of their base variant name the custom value attached (e.g. has-[.custom-class]
takes has
weight).
Arbitrary variants (e.g. [&nth-child(2)]
) don't have a weight assigned and they are placed after every known variant.
Classes with the same amount of arbitrary variants follow lexicographical order. The class that has the highest number of nested arbitrary variants is placed last.
Screen variants (e.g. sm:
, max-md:
, min-lg:
) are not supported yet.
Contributed by @lutaok
FAQs
WebAssembly bindings to the Biome workspace API
The npm package @biomejs/wasm-web receives a total of 2,810 weekly downloads. As such, @biomejs/wasm-web popularity was classified as popular.
We found that @biomejs/wasm-web demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 4 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
Security News
Research
Socket researchers have discovered malicious npm packages targeting crypto developers, stealing credentials and wallet data using spyware delivered through typosquats of popular cryptographic libraries.
Security News
Socket's package search now displays weekly downloads for npm packages, helping developers quickly assess popularity and make more informed decisions.