Research
PyPI Package Disguised as Instagram Growth Tool Harvests User Credentials
A deceptive PyPI package posing as an Instagram growth tool collects user credentials and sends them to third-party bot services.
By Kush Pandya - Jun 06, 2025
🚀 Big News: Socket Acquires Coana to Bring Reachability Analysis to Every Appsec Team.Learn more →
@celery/ui-components
Advanced tools
UI Components
Reusable UI components
Styleguide
npm installnpm run build- Open
build/index.htmlin browser
Usage
You must be an approved npm user for the @celery namespace/private modules.
npm install @celery/ui-components
Config vs Index
All components come with at least config.less and index.less. config.less includes all the configuration/variables and mixins. index.less actually defines the component rulesets or invokes mixins. If you do not want to include the default components, you can just include the config and use that to create your own components based on the variables and mixins.
Development
npm install
npm run build-watch
This will watch the components, mixins, and styleguide directories. If any of them fail to compile, you have an error.
Open the styleguide by opening build/index.html in your browser.
Don't forget to document things in the comments of the index files. Use Styledown syntax.
Deploying
In order to publish, you must be a part of the @celery npm group.
git checkout master
git pull
npm version [major/minor/patch]
git push
npm publish
TODO
- Livereload styles
- Express server to serve styleguide
- Migrate more components from other projects
License
MIT
FAQs
Shared UI Components and Styles
The npm package @celery/ui-components receives a total of 1 weekly downloads. As such, @celery/ui-components popularity was classified as not popular.
We found that @celery/ui-components demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 3 open source maintainers collaborating on the project.
Package last updated on 05 Apr 2016
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Product
Socket Now Supports pylock.toml Files
Socket now supports pylock.toml, enabling secure, reproducible Python builds with advanced scanning and full alignment with PEP 751's new standard.
By Trevor Norris - Jun 05, 2025
Security News
Research
Destructive npm Packages Disguised as Utilities Enable Remote System Wipe
Socket uncovered two npm packages that register hidden HTTP endpoints to delete all files on command.
By Kush Pandya - Jun 05, 2025