Research
Security News
Malicious npm Package Targets Solana Developers and Hijacks Funds
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
@convergence/ace-collab-ext
Advanced tools
Enhances the Ace Editor by adding the ability to render cues about what remote users are doing in the system.
Install package with NPM and add it to your development dependencies:
npm install --save-dev @convergence/ace-collab-ext
Go here to see a live demo of multiple cursors, multiple selections, and remote scrollbars (Visit on multiple browsers, or even better, point a friend to it too). This uses Convergence to handle the synchronization of data and user actions.
The multi cursor manager allows you to easily render the cursors of other users
working in the same document. The cursor position can be represented as either
a single linear index or as a 2-dimensional position in the form of
{row: 0, column: 10}
.
const editor = ace.edit("editor");
const curMgr = new AceCollabExt.AceMultiCursorManager(editor.getSession());
// Add a new remote cursor with an id of "uid1", and a color of orange.
curMgr.addCursor("uid1", "User 1", "orange", {row: 0, column: 10});
// Set cursor for "uid1" to index 10.
curMgr.setCursor("uid1", 10);
// Clear the remote cursor for "uid1" without removing it.
curMgr.clearCursor("uid1");
// Remove the remote cursor for "uid1".
curMgr.removeCursor("uid1");
The multi selection manager allows you to easily render the selection of other users working in the same document. Selection is represented by an array of AceRanges. A single range is common for normal selection, but multiple ranges are needed to support block selection.
const AceRange = ace.require("ace/range");
const editor = ace.edit("editor");
const selMgr = new AceCollabExt.AceMultiSelectionManager(editor.getSession());
// A two-line block selection
const initialRanges = [
new AceRange(0, 0, 0, 10),
new AceRange(1, 0, 1, 10),
];
// Add a new remote view indicator with an id of "uid1", and a color of orange.
selMgr.addSelection("uid1", "User 1", "orange", initialRanges);
// Set the selection to a new range.
selMgr.setSelection("uid1", new AceRange(10, 0, 11, 10));
// Nullify the selection without removing the marker.
selMgr.clearSelection("uid1");
// Remove the remote view indicator for "uid1".
selMgr.removeSelection("uid1");
A radar view indicates where in a document another user is looking and allows you to easily go to the location in the document.
const editor = ace.edit("editor");
const radarView = new AceCollabExt.RadarView("radarView", editor);
// Add a new remote view indicator with an id of "uid1", and a color of orange.
radarView.addView("uid1", "user1", "orange", 0, 20, 0);
// Set the viewport range of the indicator to span rows 10 through 40.
radarView.setViewRows("uid1", 10, 40);
// Set the row location of the cursor to line 10.
radarView.setCursorRow("uid1", 10);
// Remove the remote view indicator for "uid1".
radarView.removeView("uid1");
FAQs
Collaborative Extensions for the Ace Editor
The npm package @convergence/ace-collab-ext receives a total of 24 weekly downloads. As such, @convergence/ace-collab-ext popularity was classified as not popular.
We found that @convergence/ace-collab-ext demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
Security News
Research
Socket researchers have discovered malicious npm packages targeting crypto developers, stealing credentials and wallet data using spyware delivered through typosquats of popular cryptographic libraries.
Security News
Socket's package search now displays weekly downloads for npm packages, helping developers quickly assess popularity and make more informed decisions.