Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@data-fair/app-carousel
Advanced tools
Cette application permet de créer des diaporamas déroulants
An application for DataFair. It is hosted by npm and the jsdelivr CDN.
DataFair is an Open Source Web software developped by Koumoul for publishing data online with complete search and aggregation capabilities, metadata management, mapping functionalities, access control, etc. It can be used as a back office for Open Data platforms, data visualizations , custom search engines and other applications.
DataFair comes with functionalities to facilitate the development, deployment and configuration of small data consuming applications. This project is an example of such an application.
This technical stack is just an example of what can be used to build an application for DataFair. It is a quite rich stack for a state of the art development environment. For an application with a more minimalist stack, you can see data-fair-minimal.
This project was created using the data-fair-app vue cli plugin.
Setup dependencies:
npm install
Configure the Data Fair instance you are accessing by creating a .env file with the following variables (if you skip this step you will be using the public datasets from the Koumoul organization on https://koumoul.com/s/data-fair):
DATAFAIR_URL=https://koumoul.com/s/data-fair
DATAFAIR_OWNER_TYPE=organization or user
DATAFAIR_OWNER_ID=...
DATAFAIR_API_KEY= leave empty to use only public datasets
Run the development server and serve the application with hot reload:
npm run dev
A JSON schema file that describes the expected configuration. DataFair expects this file to be found at the precise path %MY APP%/config-schema.json.
The content of this JSON schema is extended with some annotations used by DataFair to automatically create a configuration form. The details of these annotations can be found in demo of the library we maintain to create these forms: vjsf.
Simply publish the project on the global npm registry (you need to be member of the owner organization).
npm version PATCH|MINOR|MAJOR
npm publish
git push && git push --tags
If the release is a bug fix and you don't want to wait 24h (the cache delay of jsdelivr), you can purge the cache for the index.html file of the minor version in the CDN:
curl https://purge.jsdelivr.net/npm/app-carousel@MINOR/dist/index.html
To publish a version for testing purposes you can tag it as a pre-release and publish it with the tag "staging".
npm version prerelease --preid=staging
npm publish --tag staging
curl https://purge.jsdelivr.net/npm/app-carousel@staging/dist/index.html
git push && git push --tags
FAQs
*Cette application permet de créer des diaporamas déroulants*
We found that @data-fair/app-carousel demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.