
Security News
/Research
Wallet-Draining npm Package Impersonates Nodemailer to Hijack Crypto Transactions
Malicious npm package impersonates Nodemailer and drains wallets by hijacking crypto transactions across multiple blockchains.
@mutable/meiosis
Advanced tools
Use this Design System within Mutable Products.
npm install
Note: When using NPM v7, you might encounter npm ERR! ERESOLVE unable to resolve dependency tree
. To fix this, please use npm install --legacy-peer-deps
, since the error is caused by some of the dependencies (including @visx) not supporting React v17 yet.
npm run storybook
All the components having *.stories.tsx
are automatically included in Storybook.
npm run build-storybook
npm run build
When creating a new component, instead of creating the component directory and all its files manually, a util called create-component.js
can be used.
npm run generate ComponentName
This will generate the following files, based on the templates stored at util/templates
.
/src
/components
/ComponentName
ComponentName.tsx
ComponentName.stories.tsx
ComponentName.types.ts
To export the newly added component in the npm package, add it to index.ts
.
The component library is published to @mutable/meiosis. To publish a new version, update the version in package.json
, and run:
npm publish
To use meiosis components in a client app, run:
npm install @mutable/meiosis
Then, simply use them by import { Table, SystemHealthCard } from "@mutable/meiosis"
.
All the components can be tested in different states using Storybook stories.
In addition, to test the package in client apps locally (before publishing it to NPM package registry), build the component library, and, in the client app run:
npm uninstall @mutable/meiosis
npm install full/path/to/package
Remember to change the dependency back to the published NPM package after testing.
The library was inspired by react-component-library template.
FAQs
Meiosis is the Design System for Mutable Products and Websites
We found that @mutable/meiosis demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 7 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
/Research
Malicious npm package impersonates Nodemailer and drains wallets by hijacking crypto transactions across multiple blockchains.
Security News
This episode explores the hard problem of reachability analysis, from static analysis limits to handling dynamic languages and massive dependency trees.
Security News
/Research
Malicious Nx npm versions stole secrets and wallet info using AI CLI tools; Socket’s AI scanner detected the supply chain attack and flagged the malware.