Security News
Research
Data Theft Repackaged: A Case Study in Malicious Wrapper Packages on npm
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
@itwin/itwinui-css
Advanced tools
CSS (Sass/SCSS) library for building beautiful and well working web UI components within Bentley Systems & iTwin.js applications.
An open-source design system that helps us build a unified web experience.
Key features • Install • Use • Contributing
The iTwinUI package is a CSS (Sass/SCSS) library for building beautiful and well working web UI components with support for multiple color themes within Bentley Systems & iTwin.js applications.
The goal of this project is to transform UX design specifications into flexible and usable style for Bentley web applications. This is accomplished by developing the style using Sass (.scss) and providing end users with that Sass, as well as CSS. This provides great flexibility to the end user and more readily enables adoption of the iTwinUI standards.
npm install @itwin/itwinui-css
yarn add @itwin/itwinui-css
You need to add iui-body
class to your <body>
element in order to get recommended stylings.
@import '@itwin/itwinui-css/scss/variables';
.my-class {
padding: $iui-m;
@include themed {
color: t(iui-text-color);
}
}
Note: We highly recommend using post-processing tools for CSS (like postcss and autoprefixer) to add vendors' prefixes as we are not doing that manually in SCSS.
@import '@itwin/itwinui-css/css/global';
Are you interested in helping iTwinUI grow and expand? You can submit feature requests or bugs by creating issues. Please read our CONTRIBUTING.md for more information.
Read our CHANGELOG.md to find recent changes.
FAQs
CSS library for building beautiful and well working web UI components within Bentley Systems & iTwin.js applications.
We found that @itwin/itwinui-css demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 5 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Research
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
Research
Security News
Attackers used a malicious npm package typosquatting a popular ESLint plugin to steal sensitive data, execute commands, and exploit developer systems.
Security News
The Ultralytics' PyPI Package was compromised four times in one weekend through GitHub Actions cache poisoning and failure to rotate previously compromised API tokens.