Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@bliss-design-system/loading
Advanced tools
<bliss-loading>
renders a loading spinner to the page. This component is normally used after an action was triggered to indicate a loading state. <bliss-loading>
can be used independently or inside other components (e.g. buttons).
To install this component, run:
yarn add @bliss-design-system/loading
To use this component, you'll need to register the component to the window
's Custom Elements Registry. In order to achieve that, you'll want to call this function within your application's client-facing entry file:
import { blissRegisterLoading } from '@bliss-design-system/loading';
blissRegisterLoading(); // Registers <bliss-loading>
That will make the component available in your application and you can use it like this:
<!-- Render a loading component at medium size -->
<bliss-loading></bliss-loading>
The component accepts the following properties:
Property | Type | Description | Default | Required | Options |
---|---|---|---|---|---|
size | String | Size of the loading component | medium | false | medium or large |
By default, <bliss-loading>
will inherit the color
property from its parent element. This means that if you are using a <bliss-loading>
component inside of a button and the text color is red, then <bliss-loading>
will inherit this color
value and also be red. But, if you want to change the color of <bliss-loading>
, add the following to your application's styles:
bliss-loading {
color: blue;
}
If you'd like to contribute, please open an issue with your suggested change on our Proposal Board. Once that is accepted, either the Bliss team will work on it or you can make changes locally by doing the following:
# Clone this repository
git clone https://gitlab.com/bliss-design-system/components.git
# Move into the component toolkit
cd components/
# Install the dependencies
yarn
You don't need to move into the package's directory to run storybook, tests or anything else. All of those commands exist in the root of the component toolkit, so while you can work on the component within its specific folder, you don't need to move through directories to run anything.
You can see all of your changes as you make them on Storybook.
To run a local instance of Storybook for this component, run:
yarn storybook
If you want to test as you develop, run:
yarn test
// or
yarn test:watch
We follow the Conventional Commits specification, meaning that you'll be prompted to fill out a descriptive message when you commit. We also use these commits to manage our releases, so we appreciate details.
As a guideline for this component, we use:
fix
for bug fixes, minor stylistic improvements, etc.feat
for any backward compatible API changes.For anything that breaks backwards compatibility or introduces significant changes that require a major version change, please get in touch with the team.
When you're ready to open a merge request, please use a descriptive title and fill out the provided template.
The team will be notified, but it helps to post your merge request in #bliss_support.
We'll fill this section out as we go and as issues are raised. But if you haven't found what you're looking for, get in touch via bliss@bryter.io or via the #bliss_support Slack channel ✨.
FAQs
Renders a loading spinner to the page
We found that @bliss-design-system/loading demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 4 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.