Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@ebay/ebayui-core
Advanced tools
> Collection of core eBay components; considered to be the building blocks for all composite structures, pages & apps.
Collection of core eBay components; considered to be the building blocks for all composite structures, pages & apps.
The eBayUI components are Marko custom tags that follow the core principles of HTML. For example:
For more information, please read Building a UI Component in 2017 and Beyond.
NOTE: Marko v3 also requires Marko Widgets.
The eBayUI core components are available as the @ebay/ebayui-core
package on NPM.
Use npm or yarn to add the package dependency to your project:
yarn add @ebay/ebayui-core
Once the package dependency is added, the eBay customs tags are now available for use in your Marko templates. For example, to use an ebay-menu
component:
template.marko
<ebay-menu label="Sort" type="radio">
<ebay-menu-item>Price</ebay-menu-item>
<ebay-menu-item>Time</ebay-menu-item>
<ebay-menu-item>Distance</ebay-menu-item>
</ebay-menu>
On Marko v3, remember to include the component's resources in your browser.json
file.
browser.json
{
"dependencies": [
"@ebay/ebayui-core/ebay-menu"
]
}
Attributes provide initial state for a component. We can see that the menu has label
and type
attributes:
template.marko
<ebay-menu label="Sort" type="radio">
<ebay-menu-item>Price</ebay-menu-item>
<ebay-menu-item>Time</ebay-menu-item>
<ebay-menu-item>Distance</ebay-menu-item>
</ebay-menu>
Some attributes are stateful and can be updated via the DOM. The label attribute, for example:
var menu = document.querySelector('.menu');
menu.label = 'Sortieren';
NOTE: Undocumented attributes are assumed to be HTML and will be applied to the root element of the custom tag.
Events can be handled via the DOM. For example, the menu emits a menu-change
event:
menu.addEventListener('menu-change', onMenuChange);
Events can also be handled using Marko syntax:
template.marko
<ebay-menu label="Sort" type="radio" w-onchange("onMenuChange")>
<ebay-menu-item>Price</ebay-menu-item>
<ebay-menu-item>Time</ebay-menu-item>
<ebay-menu-item>Distance</ebay-menu-item>
</ebay-menu>
Note: when using DOM events, you should also handle event destruction and delegation as needed.
All components support browsers from the official Tier 1 and Tier 2 of the eBay Browser Policy. This list is defined in the browserslist
section of our package.json, where it is also accessible to internal tooling.
For upcoming roadmap and release history, please refer to our releases and milestones pages.
The ebayui-core package follows strict Semantic Versioning.
Given a version number MAJOR.MINOR.PATCH:
Please use our issues page to ask questions, report issues or submit feature requests.
To help track your issue, our admins will assign it with one or more coloured labels:
Looking to contribute to eBay UI? Please visit our contributing page for more information.
Copyright (c) 2018 eBay Inc.
Use of this source code is governed by a MIT-style license that can be found in the LICENSE file or at https://opensource.org/licenses/MIT.
FAQs
Collection of core eBay components; considered to be the building blocks for all composite structures, pages & apps.
The npm package @ebay/ebayui-core receives a total of 167 weekly downloads. As such, @ebay/ebayui-core popularity was classified as not popular.
We found that @ebay/ebayui-core demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.