![Namecheap Takes Down Polyfill.io Service Following Supply Chain Attack](https://cdn.sanity.io/images/cgdhsj6q/production/6af25114feaaac7179b18127c83327568ff592d1-1024x1024.webp?w=800&fit=max&auto=format)
Security News
Namecheap Takes Down Polyfill.io Service Following Supply Chain Attack
Polyfill.io has been serving malware for months via its CDN, after the project's open source maintainer sold the service to a company based in China.
@launchpad-ui/icons
Advanced tools
Readme
An element that supplements content and represents an action or feature within LaunchDarkly.
$ yarn add @launchpad-ui/icons
# or
$ npm install @launchpad-ui/icons
By default, the Icon
component expects the package's provided sprite.svg
file to be located in /static/sprite.svg
of your app. The name
prop specifies which icon to render.
import { Icon } from '@launchpad-ui/icons';
const MyIcon = () => <Icon name="info" />;
A custom path to the sprite can be set via the IconContext
provider. For example, if importing a static asset returns a resolved URL (like in Vite or Remix) you can do the following in your app to load the icons:
import { IconContext } from '@launchpad-ui/icons';
import icons from '@launchpad-ui/icons/sprite.svg';
import { createRoot } from 'react-dom/client';
const domNode = document.getElementById('root');
const root = createRoot(domNode);
root.render(
<IconContext.Provider value={{ path: icons }}>
<App />
</IconContext.Provider>
);
Unfortunately SVG sprites cannot be accessed cross-domain. If you are hosting the sprite file in a CDN or different domain you will have to fetch the file and inject it into the document to access the icons directly.
First set the Icon
context path to an empty string to indicate the symbols are available in the DOM:
import { IconContext } from '@launchpad-ui/icons';
import { createRoot } from 'react-dom/client';
const domNode = document.getElementById('root');
const root = createRoot(domNode);
root.render(
<IconContext.Provider value={{ path: '' }}>
<App />
</IconContext.Provider>
);
Then fetch and inject the sprite for Icon
to render icons correctly:
fetch('https://cdn.example.com/sprite.svg')
.then(async (response) => response.text())
.then((data) => {
const parser = new DOMParser();
const content = parser.parseFromString(data, 'image/svg+xml').documentElement;
content.id = 'lp-icons-sprite';
content.style.display = 'none';
document.body.appendChild(content);
})
.catch((err) => {
console.log('Failed to fetch sprite', err);
});
To minimize latency, you can preload the sprite file accordingly:
<link
rel="preload"
href="https://cdn.example.com/sprite.svg"
as="fetch"
type="image/svg+xml"
crossorigin
/>
FAQs
An element that supplements content and represents an action or feature within LaunchDarkly.
The npm package @launchpad-ui/icons receives a total of 2,002 weekly downloads. As such, @launchpad-ui/icons popularity was classified as popular.
We found that @launchpad-ui/icons demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Polyfill.io has been serving malware for months via its CDN, after the project's open source maintainer sold the service to a company based in China.
Security News
OpenSSF is warning open source maintainers to stay vigilant against reputation farming on GitHub, where users artificially inflate their status by manipulating interactions on closed issues and PRs.
Security News
A JavaScript library maintainer is under fire after merging a controversial PR to support legacy versions of Node.js.