Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@ebay/ebayui-core-react
Advanced tools
eBayUI React components
ebay-carousel
(in progress...)ebay-combobox
ebay-combobox-readonly
ebay-details
ebay-fake-menu
(in progress...)ebay-fake-menu-button
(in progress...)ebay-fake-tabs
ebay-filter
(in progress...)ebay-filter-menu
ebay-filter-menu-button
ebay-menu-button
(in progress...)ebay-snackbar-dialog
ebay-tourtip
ebay-video
ebay-window-notice
These react components are available as @ebay/ebayui-core-react
package on NPM.
Use npm or yarn to add the package dependency to your project:
yarn add @ebay/ebayui-core-react
import { EbayTextbox, EbayButton } from '@ebay/ebayui-core-react'
<EbayTextbox placeholder="Enter text here" />
<EbayButton>Submit</EbayButton>
import { EbayTextbox } from '@ebay/ebayui-core-react/ebay-textbox'
import { EbayButton } from '@ebay/ebayui-core-react/ebay-button'
<EbayTextbox placeholder="Enter text here" />
<EbayButton>Submit</EbayButton>
If you render children components dynamically and don't want to get React key
warnings then provide a key
:
<EbayParentComponent>
{items.map((item, index) => <EbayChildComponent key={index}>{item}</EbayChildComponent>)}
</EbayParentComponent>
You will need polyfills for IE. Recommended approach is using core-js
with or without babel
.
To manually use polyfills you need to import them:
import 'core-js/stable/object/values'
Object.values({ a: 'Hello' }).map(console.log)
But we suggest to use polyfills automatically by editing your .babelrc
:
{
"presets": [
[
"@babel/preset-env",
{
"useBuiltIns": "usage",
"corejs": "3",
"targets": {
"chrome": "63",
"safari": "12",
"ios": "12",
"edge": "18",
"ie": "11"
}
}
]
]
}
targets
can also be something like "> 0.2%, not dead"
Create an issue on github
Write an email to tmanyanov@ebay.com
skin
changesThis will update EbaySvg
and EbayIcon
components:
yarn update-icons
git checkout -b features/new-component
yarn install
to install dependenciesREADME.md
on component levelyarn lint
. You can do yarn lint --fix
to automatically fix small lint issues (e.g indentation, whitespace, semicolons, ...)yarn test
. Do yarn test -u
to automatically the snapshot tests.If you implement a new component, make sure that it complies with eBay UI guidelines:
One way to comply those guidelines is to implement your new component as similiar as possible with the Marko eBayUI Core, or port the Marko implementation to React. This means the new component should:
a11y-heading-text
, or ebay-button priority
)select-change
). Since React does not use event emitter (unlike Marko), one can implement this as a prop with Function.FAQs
Skin components build off React
The npm package @ebay/ebayui-core-react receives a total of 12 weekly downloads. As such, @ebay/ebayui-core-react popularity was classified as not popular.
We found that @ebay/ebayui-core-react demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 17 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.