Research
Security News
Malicious npm Package Targets Solana Developers and Hijacks Funds
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
@melloware/coloris
Advanced tools
A lightweight and elegant JavaScript color picker written in vanilla ES6.
Convert any text input field into a color field.
Forked from https://github.com/mdbassit/Coloris so we could provide TypeScript and NPM support. Head over to Momo Bassit's original repo for user documentation.
See the tests directory for examples with different bundlers.
You can download the color picker from NPM:
# using NPM
npm install @melloware/coloris
# using Yarn
yarn add @melloware/coloris
And then use it within a module environment, e.g. with browserify, rollup, webpack etc. In this case, you must initialize the color picker before its first use (which has several side-effects such as adding DOM elements):
import "@melloware/coloris/dist/coloris.css";
import Coloris from "@melloware/coloris";
Coloris.init();
Coloris({el: "#coloris"});
Since default exports can be tricky, if this does not work with your bundler, use named imports instead:
import "@melloware/coloris/dist/coloris.css";
import { coloris, init } from "@melloware/coloris";
init();
coloris({el: "#coloris"});
The color picker also works with AMD / require.js:
requirejs(['path/to/coloris'], function (Coloris) {
Coloris.init();
Coloris({
el: "#coloris",
});
});
The colorpicker can also be downloaded from Maven Central as a Java JAR for use in Java web applicatons:
<dependency>
<groupId>org.webjars.npm</groupId>
<artifactId>melloware__coloris</artifactId>
<version>...</version>
</dependency>
This package includes TypeScript declarations. When you use it in a module environment, just import it:
import "@melloware/coloris/dist/coloris.css";
import * as Color from "@melloware/coloris";
Coloris.init();
Coloris.coloris({el: "#coloris"});
Coloris.close();
If you have allowSyntheticDefaultImports
enabled, you could also use:
import "@melloware/coloris/dist/coloris.css";
import Coloris from "@melloware/coloris";
Coloris.init();
Coloris({el: "#coloris"});
Coloris.close();
If you wish to write a global script file, use a triple slash reference:
/// <reference types="@melloware/coloris" />
Coloris({
el: "#coloris",
});
First of all, again, please note that this is a fork of the original repo!
Clone the git repo:
git clone git@github.com:melloware/coloris-npm
Enter the Coloris directory and install the development dependencies:
cd coloris-npm && npm install
Run the build script:
npm run build
The built version will be in the dist
directory in both minified and full copies.
Alternatively, you can start a gulp watch task to automatically build when the source files are modified:
npm run start
Adjust the version in the package.json
if necessary, then
npm login
# This will run npm run build automatically
npm publish --access public
Then upload code to github, create tag & release.
Copyright (c) 2021 Momo Bassit. Coloris is licensed under the MIT license.
FAQs
A lightweight and elegant color picker.
We found that @melloware/coloris demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
Security News
Research
Socket researchers have discovered malicious npm packages targeting crypto developers, stealing credentials and wallet data using spyware delivered through typosquats of popular cryptographic libraries.
Security News
Socket's package search now displays weekly downloads for npm packages, helping developers quickly assess popularity and make more informed decisions.