Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
@codeforamerica/style
Advanced tools
Code for America's Styleguide. http://v4.style.codeforamerica.org
======
The style guide serves as the base CSS and organizing styles for www.codeforamerica.org. The style guide is primarily a living pattern library that explains how to use our CSS to build websites. It contains:
Code for America's communications and tech teams originally worked with Brighton web design firm Clearleft and Colorado branding firm Dojo4 to create a new visual design and front-end for the Code for America website. This original pattern library existed through three major releases before being retired in favor of the current trimmed-down style guide in this repo that is solely focused on providing patterns for building www.codeforamerica.org. See the original pattern library repository.
<head>
tag:<head>
...
<!-- Pattern Library Stylesheets -->
<link rel="stylesheet" type="text/css" href="https://v4.style.codeforamerica.org/css/main.css">
<!-- Font Vendor Stylesheets -->
<script src="https://use.typekit.net/lkd6vsz.js"></script>
<script>try{Typekit.load({ async: true });}catch(e){}</script>
<link rel="stylesheet" type="text/css" href="https://maxcdn.bootstrapcdn.com/font-awesome/4.3.0/css/font-awesome.min.css">
<!-- Shims For Old Browsers -->
<!--[if lt IE 9]>
<script src="https://html5shiv.googlecode.com/svn/trunk/html5.js"></script>
<script src="https://s3.amazonaws.com/nwapi/nwmatcher/nwmatcher-1.2.5-min.js"></script>
<script src="/js/selectivizr-min-1.0.2.js"></script>
<![endif]-->
...
</head>
And add the following after all the content in your <body>
tag:
<body>
...other content...
<!-- SCRIPTS -->
<script src="https://v4.style.codeforamerica.org/js/jquery-1.11.2.min.js"></script>
<script src="https://v4.style.codeforamerica.org/js/site.js"></script>
</body>
Jekyll is a static site generator built with Ruby that needs the following to run:
First, you need the prerequisites listed above. This starter requires Jekyll to be installed in order to build and preview. To install Jekyll, clone the repo, cd into the folder, and run bundle install
:
$ git clone https://github.com/codeforamerica/style-guide.git
$ cd style-guide
$ bundle install
To preview the site locally, use the Jekyll command:
$ bundle exec jekyll serve
The site should be viewable at localhost:4000. The styleguide is located at 'localhost:4000/styleguide'.
We welcome bugs, questions and suggestions in the form of issues, or features and code fixes in the form of a pull request.
fix-layout-padding
).We use the GitHub issue tracker to track bugs and features. Before submitting a bug report or feature request, check to make sure it hasn't already been submitted. When submitting a bug report, please include a screenshot and any additional details that can help us debug, such as your operating system and browser version.
Copyright (c) 2009-2015 Code for America. See the LICENSE for details.
[5.0.1] - 2019-02-27
FAQs
Code for America's Styleguide. http://v4.style.codeforamerica.org
The npm package @codeforamerica/style receives a total of 6 weekly downloads. As such, @codeforamerica/style popularity was classified as not popular.
We found that @codeforamerica/style demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.