![Malicious npm Package Typosquats react-login-page to Deploy Keylogger](https://cdn.sanity.io/images/cgdhsj6q/production/007b21d9cf9e03ae0bb3f577d1bd59b9d715645a-1024x1024.webp?w=400&fit=max&auto=format)
Research
Security News
Malicious npm Package Typosquats react-login-page to Deploy Keylogger
Socket researchers unpack a typosquatting package with malicious code that logs keystrokes and exfiltrates sensitive data to a remote server.
@fluentui/react-file-type-icons
Advanced tools
Readme
File type icons for Fluent UI React (formerly Office UI Fabric React)
This package includes a collection of icons to represent file types.
If you are using Fluent UI React components, you can make all file type icons available by calling the initializeFileTypeIcons
function from the @fluentui/react-file-type-icons
package:
import { initializeFileTypeIcons } from '@fluentui/react-file-type-icons';
// Register icons and pull the fonts from the default SharePoint cdn.
initializeFileTypeIcons();
// ...or, register icons and pull the fonts from your own cdn:
initializeFileTypeIcons('https://my.cdn.com/path/to/icons/');
NOTE: Do not use the item-types-fluent
icon set that was previously uploaded to the Fabric CDN; it is deprecated.
If you are using Fluent UI React, you can use the Icon
component and pass in the corresponding icon properties to render a given icon.
import { Icon } from '@fluentui/react/lib/Icon';
import { getFileTypeIconProps } from '@fluentui/react-file-type-icons';
<Icon {...getFileTypeIconProps({ extension: 'docx', size: 16 })} />;
See GitHub for more details on the Fluent UI React project and packages within.
FAQs
Unknown package
The npm package @fluentui/react-file-type-icons receives a total of 10,952 weekly downloads. As such, @fluentui/react-file-type-icons popularity was classified as popular.
We found that @fluentui/react-file-type-icons demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers unpack a typosquatting package with malicious code that logs keystrokes and exfiltrates sensitive data to a remote server.
Security News
The JavaScript community has launched the e18e initiative to improve ecosystem performance by cleaning up dependency trees, speeding up critical parts of the ecosystem, and documenting lighter alternatives to established tools.
Product
Socket now supports four distinct alert actions instead of the previous two, and alert triaging allows users to override the actions taken for all individual alerts.