Security News
Another Round of TEA Protocol Spam Floods npm, But It’s Not a Worm
Recent coverage mislabels the latest TEA protocol spam as a worm. Here’s what’s actually happening.
By Philipp Burckhardt - Nov 14, 2025
@duskit/components
Advanced tools
@duskit/components
[](https://github.com/dusk-network/duskit/actions/workflows/ci.yml) [](https://www.npmjs.com/package/
@duskit/components
Svelte components to build a Dusk web application.
TOC
Dev environment
The dev environment assumes that you have at least Node.js v22.11.0 installed. The LTS version is 22.11.0 at the time of writing.
This package is part of the Duskit monorepo. Please refer to the main README for monorepo usage, changeset management and installation of dependencies.
Installation and usage
Install it with your favourite package manager:
npm install @duskit/components --save
Import the components you need in your Svelte files:
<script>
import { Button } from "@duskit/components";
</script>
<Button text="Hi there" />
NPM scripts
npm run checks- runs all health checks (formatting, linting, type checking, tests)npm run clean- removes thecoverageandnode_modulesfoldersnpm run format- fixes the formatting in all filesnpm run format:check- performs the formatting checknpm run lint- performs the linting checknpm run lint:fix- fixes, where possible, linting errorsnpm run test- runs the test suitenpm run test:coverage- runs the test suite and generates the code coverage report in thecoveragefoldernpm run test:watch- runs the test suite in watch modenpm run typecheck- runs the type checkernpm run typecheck:watch- runs the type checker in watch mode
FAQs
[](https://github.com/dusk-network/duskit/actions/workflows/ci.yml) [](https://www.npmjs.com/package/
The npm package @duskit/components receives a total of 0 weekly downloads. As such, @duskit/components popularity was classified as not popular.
We found that @duskit/components demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 2 open source maintainers collaborating on the project.
Package last updated on 07 Jul 2025
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
PyPI Expands Trusted Publishing to GitLab Self-Managed as Adoption Passes 25 Percent
PyPI adds Trusted Publishing support for GitLab Self-Managed as adoption reaches 25% of uploads
By Sarah Gooding - Nov 14, 2025
Research
/Security News
Malicious Chrome Extension Exfiltrates Seed Phrases, Enabling Wallet Takeover
A malicious Chrome extension posing as an Ethereum wallet steals seed phrases by encoding them into Sui transactions, enabling full wallet takeover.
By Kirill Boychenko - Nov 12, 2025