Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@humanmade/nova-icons
Advanced tools
Nova Icons (Free) Nova Icons for use in React projects. | |
A Human Made project. Maintained by @rmccue. |
This is the free (public domain) NOVA icons, repackaged into React components.
yarn add @humanmade/nova-icons
You need to include the CSS file:
import '@humanmade/nova-icons/style.css';
Then, import the icons you want:
import Cloud from '@humanmade/nova-icons/Cloud';
export default props => {
<div>Here's a thing with a <Cloud /></div>;
}
All the smartness of this repo is in npm scripts and the config.js. Components are built using svg-react-transformer-writer; see the options for configuration.
To publish a new version, run yarn run dist
, which will publish in "flat mode". There is a prepublishOnly
script to prevent publishing from the root directory, but you should be careful anyway.
FAQs
`yarn add @humanmade/nova-icons`
The npm package @humanmade/nova-icons receives a total of 7 weekly downloads. As such, @humanmade/nova-icons popularity was classified as not popular.
We found that @humanmade/nova-icons demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 4 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.