Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@carboneio/carbone-sdk-js
Advanced tools
The javascript SDK to use Carbone Render easily into your frontend (Angular, Vuejs, Svelte, React, Ember.js...).
Carbone is a report generator (PDF, DOCX, XLSX, ODT, PPTX, ODS, XML, CSV...) using templates and JSON data. Learn more about the Carbone ecosystem.
npm install https://github.com/carboneio/carbone-sdk-js
or
yarn add https://github.com/carboneio/carbone-sdk-js
import carboneSDK from "carbone-sdk-js";
// SDK constructor, the access token have to be passed as an argument to carboneRenderSDK
const _carboneService = carboneSDK("eyJhbGc...");
// Template from a file input OR template ID
const _template = document.getElementById("inputFile").files[0];
// Data from an input
let _data = JSON.parse(document.getElementById("inputData").value);
// Render the report from a template and a JSON Data
_carboneService.render(_template, _data).then(({ content, name }) => {
// name == report name as a String
// content == report content as a Blob, it can be used to download the file
});
Checkout an integration example.
To edit build options, look at the file "build.js" for more details.
$ npm run build
After running the command, the script is available on the folder "dist".
Build the project
$ npm run build
To run all the tests:
$ npm run test
If you need to test the generation of templateId, you can use the nodejs main.js
to test the sha256 generation.
$ node ./tests/generate_template_id.js
Contributions, issues and feature requests are welcome!
Feel free to check issues page.
Give a ⭐️ if this project helped you!
v1.1.1
FAQs
The javascript SDK to use Carbone Render easily
We found that @carboneio/carbone-sdk-js demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.