
Research
Malicious npm Packages Impersonate Flashbots SDKs, Targeting Ethereum Wallet Credentials
Four npm packages disguised as cryptographic tools steal developer credentials and send them to attacker-controlled Telegram infrastructure.
@justeat/cloudinary
Advanced tools
Javascript library for working with Just Eat's Cloudinary service
Javascript library for working with Just Eat's Cloudinary service
npm install @justeat/cloudinary
yarn add @justeat/cloudinary
import Cloudinary from '@justeat/cloudinary';
const cloudinary = Cloudinary({
tenant: 'uk',
env: 'prod'
});
uk
for undefined valueconst cloudinary = Cloudinary({ tenant: 'uk' });
INVALID_ENV
errorconst cloudinary = Cloudinary({ env: 'prod' });
Value | Description |
---|---|
prod | (default) Production |
staging | Staging |
test | Test |
Please check the source documentation for more detail on how to use the below methods
restaurant: Returns the cloudinary path of a restaurant image
const restaurantId = 2782084;
const opts = {
cuisine: 'thai',
quality: 'auto'
};
const url = cloudinary.restaurant(restaurantId, opts);
dishes: Returns the cloudinary path of a restaurant dish image
const restaurantId = 2782084;
const dishImage = 'assorted-meal.jpg'
const opts = {
quality: 'auto'
};
const url = cloudinary.dishes(restaurantId, dishImage, opts);
url: Returns cloudinary url of restaurant image
const resourcePath = '/path/to/resource.jpg';
const params = {
height: 100,
width: 100
};
const url = cloudinary.url(resourcePath, params);
Build: npm run build
Lint: npm run lint
Release: npm run release
Single run test: jest
Continuous test: jest --watchAll
FAQs
Javascript library for working with Just Eat's Cloudinary service
The npm package @justeat/cloudinary receives a total of 8 weekly downloads. As such, @justeat/cloudinary popularity was classified as not popular.
We found that @justeat/cloudinary demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 30 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Four npm packages disguised as cryptographic tools steal developer credentials and send them to attacker-controlled Telegram infrastructure.
Security News
Ruby maintainers from Bundler and rbenv teams are building rv to bring Python uv's speed and unified tooling approach to Ruby development.
Security News
Following last week’s supply chain attack, Nx published findings on the GitHub Actions exploit and moved npm publishing to Trusted Publishers.