Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@ebay/ebayui-core
Advanced tools
Collection of core eBay components; considered to be the building blocks for all composite structures, pages & apps.
Collection of Marko widgets; considered to be the core building blocks for all eBay components, pages & apps.
Note: eBayUI Core components utilize Marko flags and, therefore, require <lasso-page/>
to be added to any page which will have core components.
Note: @ebay/skin/global
and @ebay/skin/marketsans
are required to be loaded by your app for all modules to load correctly.
Note: In order for spread attributes to work properly, marko@4.18.22
at least is required
All components are developed and tested cross-browser using BrowserStack, in accordance with our official eBay Browser Policy.
We take accessibility very seriously. Very seriously indeed. Therefore, all components are built in accordance to the eBay MIND Patterns. These patterns, in turn, build on from the specifications provided by the WAI-ARIA Authoring Practices.
Components are built in a layered, progressively enhanced fashion, utilizing the following resources:
Each layer does its bit to enforce and enhance accessibility. We consider this level of support to be one of our chief selling points, and we hope you do too!
ebay-3d-viewer
ebay-alert-dialog
ebay-avatar
ebay-badge
ebay-breadcrumbs
ebay-button
ebay-calendar
ebay-carousel
ebay-character-count
ebay-checkbox
ebay-chip
ebay-combobox
ebay-cta-button
ebay-date-textbox
ebay-details
ebay-drawer-dialog
ebay-eek
ebay-fake-link
ebay-fake-menu
ebay-fake-menu-button
ebay-fake-tabs
ebay-filter
ebay-filter-menu
ebay-filter-menu-button
ebay-fullscreen-dialog
ebay-icon
ebay-icon-button
ebay-infotip
ebay-inline-notice
ebay-lightbox-dialog
ebay-list
ebay-listbox-button
ebay-menu
ebay-menu-button
ebay-page-notice
ebay-pagination
ebay-panel-dialog
ebay-phone-input
ebay-progress-bar
ebay-progress-bar-expressive
ebay-progress-spinner
ebay-progress-stepper
ebay-radio
ebay-section-notice
ebay-section-title
ebay-segmented-buttons
ebay-select
ebay-signal
ebay-skeleton
ebay-snackbar-dialog
ebay-split-button
ebay-star-rating
ebay-star-rating-select
ebay-switch
ebay-tabs
ebay-textbox
ebay-toast-dialog
ebay-toggle-button
ebay-toggle-button-group
ebay-tooltip
ebay-tourtip
ebay-tri-state-checkbox
ebay-video
The eBayUI core components are available as the @ebay/ebayui-core
package on NPM.
Use npm or yarn to add the package dependency to your project:
npm add @ebay/ebayui-core
See the upgrade guide for more information
Once the package dependency is added, the eBay customs tags are now available for use in your Marko templates. For example, to use an ebay-menu
component:
<ebay-menu text="Sort" type="radio">
<@item>Price</@item>
<@item>Time</@item>
<@item>Distance</@item>
</ebay-menu>
Attributes provide initial state for a component. We can see that the menu has text
and type
attributes:
<ebay-menu text="Sort" type="radio">
<@item>Price</@item>
<@item>Time</@item>
<@item>Distance</@item>
</ebay-menu>
Passing new attributes to an ebayui component will always reset it's internal state. If you want to persist this state yourself, events are exposed which allow you to synchronize the state into your own components, for example:
class {
onCreate() {
this.state = {
dialogIsOpen: false
}
}
handleDialogClose() {
this.state.dialogIsOpen = false;
}
handleDialogOpen() {
this.state.dialogIsOpen = true;
}
}
<ebay-lightbox-dialog
open=state.dialogIsOpen
on-open('handleDialogOpen')
on-close('handleDialogClose')>
...
</ebay-lightbox-dialog>
HTML attributes can be used on any component, and they will be passed through to the most prominent tag of the component. The most prominent tag is usually the root or form control, but individual components will note if it varies for specific cases.
Example of static usage:
<ebay-button id="my-button"/>
For using pass-through attributes dynamically, they should be sent through the html-attributes
attribute:
$ const myAttributes = { id: 'my-button' };
<ebay-button html-attributes=myAttributes/>
Static and dynamic pass-through attributes can be used simultaneously (html-attributes takes precedence in conflicts):
$ const myAttributes = { id: 'my-button' };
<ebay-button html-attributes=myAttributes type="submit"/>
Events can also be handled using Marko syntax:
<ebay-menu text="Sort" type="radio" on-change("onMenuChange")>
<@item>Price</@item>
<@item>Time</@item>
<@item>Distance</@item>
</ebay-menu>
For upcoming roadmap and release history, please refer to our releases and milestones pages.
The ebayui-core package follows strict Semantic Versioning.
Given a version number MAJOR.MINOR.PATCH:
Deprecations will be communicated via release notes, so please ensure that you read those carefully. In general, expect any deprecated feature to be removed in the next major version. However, in some cases we may wait a while longer.
Please use our issues page to ask questions, report issues or submit feature requests.
To help track your issue, our admins will assign it with one or more coloured labels:
Looking to contribute to eBay UI? Please visit our contributing page for more information.
Copyright (c) 2018 eBay Inc.
Use of this source code is governed by a MIT-style license that can be found in the LICENSE file or at https://opensource.org/licenses/MIT.
USE OF SOME COMPONENTS REQUIRES A SEPARATE, NON-OPEN-SOURCE LICENSE FROM THIRD PARTIES
The data visualization components and the charting components of the eBayUI library are designed to use one or more HighCharts® software products. HighCharts® is a registered trademark of HighSoft AS. HighSoft AS is not affiliated with Ebay. Ebay provides no warranties of any kind (e.g., of merchantability, fitness for a particular purpose, and noninfringement), whether express or implied, with respect to the HighCharts® software products that the data visualization components and the charting components are designed to use.
COMMERCIAL USE OF HIGHCHARTS® SOFTWARE PRODUCTS REQUIRES A PAID LICENSE PROVIDED BY HIGHSOFT AS. While many components of the eBayUI library are licensed under the MIT License, the HighCharts® software products which the data visualization components and charting components of the EbayUI library are designed to use are NOT licensed under the MIT License or any other open source license. Rights pertaining to HighCharts® software products (e.g., including, but not limited to, rights to use, install, distribute, publish, merge, duplicate, and modify) are governed by the terms of one or more proprietary license agreements that are available online at http://www.highcharts.com or by the terms of custom license agreements that HighSoft AS may negotiate with its customers at its own discretion. While HighSoft AS may choose to license HighCharts® software products for non-commercial use at no cost, IT IS THE RESPONSIBILITY OF ANY PARTY THAT WISHES TO USE HIGHCHARTS® SOFTWARE PRODUCTS TO VERIFY THE TERMS OF SUCH A LICENSE WITH HIGHSOFT AS. NOTWITHSTANDING ANY PROVISION OF THIS LICENSE, PARTIES WHO ARE NOT LICENSED BY HIGHSOFT AS (OR ITS SUCCESSORS OR ASSIGNS) TO USE HIGHCHARTS® SOFTWARE PRODUCTS ARE NOT LICENSED TO USE THE DATA VISUALIZATION COMPONENTS AND THE CHARTING COMPONENTS OF THE EBAYUI LIBRARY.
This notice shall be included in all copies or substantial portions of the Software.
FAQs
Collection of core eBay components; considered to be the building blocks for all composite structures, pages & apps.
We found that @ebay/ebayui-core demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.