Security News
Another Round of TEA Protocol Spam Floods npm, But It’s Not a Worm
Recent coverage mislabels the latest TEA protocol spam as a worm. Here’s what’s actually happening.
By Philipp Burckhardt - Nov 14, 2025
@fluidframework/fluid-static
Advanced tools
@fluidframework/fluid-static
A tool to enable consumption of Fluid Data Objects without requiring custom container code.
@fluidframework/fluid-static
The fluid-static package provides a simple and powerful way to consume collaborative Fluid data.
This package is marked as experimental and currently under development. The API surface is currently under going drastic braking changes with no guarantees on compatibility.
Using fluid-static
The fluid-static package contains a container with a pre-created default data object with the ability to create and store additional objects. This is abstracted behind a developer-friendly FluidContainer interface that provides configurations for defining the container's initial object and supported dynamic object types, as well as callbacks for creating and fetching DDSes and data objects.
This is consumed by separate client packages, such as TinyliciousClient for the Tinylicious service, to provide an easy way of creating and fetching FluidContainer instances that are backed by data stored on the respective services.
FAQs
A tool to enable consumption of Fluid Data Objects without requiring custom container code.
The npm package @fluidframework/fluid-static receives a total of 4,417 weekly downloads. As such, @fluidframework/fluid-static popularity was classified as popular.
We found that @fluidframework/fluid-static demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 25 May 2022
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
PyPI Expands Trusted Publishing to GitLab Self-Managed as Adoption Passes 25 Percent
PyPI adds Trusted Publishing support for GitLab Self-Managed as adoption reaches 25% of uploads
By Sarah Gooding - Nov 14, 2025
Research
/Security News
Malicious Chrome Extension Exfiltrates Seed Phrases, Enabling Wallet Takeover
A malicious Chrome extension posing as an Ethereum wallet steals seed phrases by encoding them into Sui transactions, enabling full wallet takeover.
By Kirill Boychenko - Nov 12, 2025