Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
@dvgis/dc-common
Advanced tools
DC-SDK
is based on the open source project Cesium
for the second development of two three-dimensional WebGis
application framework , the framework optimizes the use of Cesium
and adds some additional features , designed for developers to quickly build WebGis
application.
Tips:This SDK is JS+GIS framework package. Developers need to have some front-end technology and GIS related technology
yarn run build
yarn run server
NPM / YARN
(Recommend)
Installing with NPM or YARN is recommended and it works seamlessly with webpack.
yarn add @dvgis/dc-sdk
-------------------------
npm install @dvgis/dc-sdk
import * as DC from '@dvgis/dc-sdk'
import '@dvgis/dc-sdk/dist/dc.min.css'
CDN
<script src="https://cdn.jsdelivr.net/npm/@dvgis/dc-sdk/dist/dc.min.js"></script>
<link
href="https://cdn.jsdelivr.net/npm/@dvgis/dc-sdk/dist/dc.min.css"
rel="stylesheet"
type="text/css"
/>
Please put the resources in the project root directory libs/dc-sdk, if you put it in other directory, the framework will not run properly.
The configuration is mainly used in the
NPM / YARN
way
Since the DC
framework sets CESIUM_BASE_URL
to ./libs/dc-sdk/resources/
, you need to copy Cesium
related static resources files: Assets
, Workers
, ThirdParty
to libs/dc-sdk/resources
directory of the project to ensure that the 3D scene can be rendered properly. You can also use DC.config.baseUrl
to set the static resource base related to Cesium
.
Webpack
// webpack.config.js
const path = require('path')
const CopywebpackPlugin = require('copy-webpack-plugin')
const dvgisDist = './node_modules/@dvgis'
module.exports = {
plugins: [
new CopyWebpackPlugin([
{
from: path.join(dvgisDist, 'dc-sdk/dist/resources'),
to: 'libs/dc-sdk/resources',
},
]),
],
}
Vue2.x
// vue.config.js
const path = require('path')
const CopywebpackPlugin = require('copy-webpack-plugin')
const dvgisDist = './node_modules/@dvgis'
module.exports = {
chainWebpack: (config) => {
config.plugin('copy').use(CopywebpackPlugin, [
[
{
from: path.join(dvgisDist, 'dc-sdk/dist/resources'),
to: 'libs/dc-sdk/resources',
},
],
])
},
}
Vue3.x
// vue.config.js
const path = require('path')
const CopywebpackPlugin = require('copy-webpack-plugin')
const dvgisDist = './node_modules/@dvgis'
module.exports = {
chainWebpack: (config) => {
config.plugin('copy').use(CopywebpackPlugin, [
{
patterns: [
{
from: path.join(dvgisDist, 'dc-sdk/dist/resources'),
to: path.join(__dirname, 'dist', 'libs/dc-sdk/resources'),
},
],
},
])
},
}
vite
// vite.config.js
import { defineConfig } from 'vite'
import DC from '@dvgis/vite-plugin-dc'
export default defineConfig({
plugins: [DC()],
})
global.DC = DC
DC.ready({}).then(()=>{
let viewer = new DC.Viewer()
})
1. The framework is a basic platform, completely open source, which can be modified and reconstructed by any individual or institution without our authorization.
2. We are not responsible for any problems arising from the modification of the framework by individuals and organizations.
3. Some industrial plug-ins and tools will be added in the later stage, and the code will be open source appropriately.
4. The package released by us may be used permanently and free of charge by any person or organization subject to:
1) complete package reference;
2) reserve this copyright information in the console output
We reserve the right of final interpretation of this copyright information.
if dc-sdk can bring benefits to you, please support it ~
FAQs
<img src="https://img.sh
The npm package @dvgis/dc-common receives a total of 0 weekly downloads. As such, @dvgis/dc-common popularity was classified as not popular.
We found that @dvgis/dc-common demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.