Security News
The Hidden Blast Radius of the Axios Compromise
The Axios compromise shows how time-dependent dependency resolution makes exposure harder to detect and contain.
By Ahmad Nassri - Apr 01, 2026
New Research: Supply Chain Attack on Axios Pulls Malicious Dependency from npm.Details → →
@lca_platform/project
Advanced tools
LCA Collect - Shared Project Library
A shared library for project related components and pages. This library contains building blocks for dealing with projects, project members and project groups in a React.js app.
Getting Started
npm install
Build, Test & Publish
Testing is done with Vitest
npm run test
To publish a new version:
- Update the version in
package.json(remember to follow semver) - When you're satisfied and ready to publish, then create a PR
Development Setup with other @lca_platform packages
You can use npm link to set up live reloading of the other @lca_platform packages.
- Clone the package that you wish to enable live reload on.
- In the terminal, go the root folder of the cloned repo and write
npm linkin the terminal - Go back to this repo's root folder and write
npm link @lca_platform/{PACKAGE}to link the package. - When you make changes to the package, that you wish to see in this app, simply run
npm run buildin the package and the changes will available here.
Folder Structure and Naming
src/ # Contains the source code
__mocks__/ # Contains the mock data and functions for unit tests
assets/ # Contains assets, such as images
components/ # React components
myComponent/ # Each component has its own folder
index.ts # Export of what is public
myComponent.tsx # The component
myComponent.spec.tsx # Unit test file
dataAccess/ # Apollo Client folder
generated.ts # Autogenerated file from Apollo with React Hooks for data fetching
schema.graphql # File for writing GraphQL queries
pages/ # Page components
Further Documentation
Further documentation for LCAPlatform can be found here
License
Unless otherwise described, the code in this repository is licensed under the Apache-2.0 License. Please note that some modules, extensions or code herein might be otherwise licensed. This is indicated either in the root of the containing folder under a different license file, or in the respective file's header. If you have any questions, don't hesitate to get in touch with us via email.
FAQs
A shared library for project related components and pages
We found that @lca_platform/project demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 24 Sep 2024
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
Supply Chain Attack on Axios Pulls Malicious Dependency from npm
A supply chain attack on Axios introduced a malicious dependency, plain-crypto-js@4.2.1, published minutes earlier and absent from the project’s GitHub releases.
By Socket Research Team - Mar 31, 2026
Research
TeamPCP Compromises Telnyx Python SDK to Deliver Credential-Stealing Malware
Malicious versions of the Telnyx Python SDK on PyPI delivered credential-stealing malware via a multi-stage supply chain attack.
By Socket Research Team - Mar 27, 2026