Security News
New React Server Components Vulnerabilities: DoS and Source Code Exposure
New DoS and source code exposure bugs in React Server Components and Next.js: what’s affected and how to update safely.
By Sarah Gooding - Dec 12, 2025
🚨 Shai-Hulud Strikes Again:834 Packages Compromised.Technical Analysis →
@lrnwebcomponents/aframe-player
Advanced tools
@lrnwebcomponents/aframe-player
A-frame 3D player in the browser via data binding w/ polymer
<aframe-player>
Player
3D Player and data binding for a-frame elements
Usage
To use this web component in your project you can utilize one of the following styles of syntax.
/* In an existing module / web component */
import '@lrnwebcomponents/aframe-player/aframe-player.js';
/* At top of an application */
<script type="module" src="node_modules/@lrnwebcomponents/aframe-player/aframe-player.js"></script>
/* Alternatives for top of application */
<script type="module">
import '@lrnwebcomponents/aframe-player/aframe-player.js';
import {AframePlayer} from '@lrnwebcomponents/aframe-player/aframe-player.js';
</script>
Develop / Demo
Run yarn start will start a local development server, open your default browser to display it, open your finder to the correct window and start watching the /src directory for changes and automatically rebuilding the element and documentation site for the demo.
$ yarn start
Test
$ yarn run test
Build
Builds ensure that wcfactory can correctly compile your web component project to work on the maximum number of browsers possible.
$ yarn run build
Contributing
- Fork it!
git clone git@github.com/elmsln/lrnwebcomponents.git - Create your feature branch:
git checkout -b my-new-feature - Commit your changes:
git commit -m 'Add some feature' - Push to the branch:
git push origin my-new-feature - Submit a pull request :D
Code style
Player (and all lrnwebcomponents) use Prettier to auto-format JS and JSON. The style rules get applied when you commit a change. If you choose to, you can integrate your editor with Prettier to have the style rules applied on every save.
License
Keywords
FAQs
A-frame 3D player in the browser via data binding w/ polymer
The npm package @lrnwebcomponents/aframe-player receives a total of 4 weekly downloads. As such, @lrnwebcomponents/aframe-player popularity was classified as not popular.
We found that @lrnwebcomponents/aframe-player demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 4 open source maintainers collaborating on the project.
Package last updated on 29 Feb 2024
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
Software Engineering Daily Podcast: Feross on AI, Open Source, and Supply Chain Risk
Socket CEO Feross Aboukhadijeh joins Software Engineering Daily to discuss modern software supply chain attacks and rising AI-driven security risks.
By Sarah Gooding - Dec 11, 2025
Security News
npm Revokes Classic Tokens, as OpenJS Warns Maintainers About OIDC Gaps
GitHub has revoked npm classic tokens for publishing; maintainers must migrate, but OpenJS warns OIDC trusted publishing still has risky gaps for critical projects.
By Sarah Gooding - Dec 10, 2025