Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@carbon/cli
Advanced tools
Task automation for working with the Carbon Design System
To install @carbon/cli
in your project, you will need to run the following
command using npm:
npm install -S @carbon/cli
If you prefer Yarn, use the following command instead:
yarn add @carbon/cli
You can install @carbon/cli
in your project, or use a tool like
npx
by running the following command in your project:
npx @carbon/cli --help
The output of the --help
option is:
Usage: @carbon/cli [options]
Commands:
cli ci-check run CI checks
cli contribute <command> get started contributing with Carbon
cli publish <tag> publish packages that have different versions from
the package registry
cli release [bump] run the release step for the given version bump
cli sync [target] sync files across workspaces
Options:
--help Show help [boolean]
--version Show version number [boolean]
We're always looking for contributors to help us fix bugs, build new features, or help us improve the project documentation. If you're interested, definitely check out our Contributing Guide! 👀
Licensed under the Apache 2.0 License.
This package uses IBM Telemetry to collect de-identified and anonymized metrics data. By installing this package as a dependency you are agreeing to telemetry collection. To opt out, see Opting out of IBM Telemetry data collection. For more information on the data being collected, please see the IBM Telemetry documentation.
FAQs
Task automation for working with the Carbon Design System
We found that @carbon/cli demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.