Research
Recent Trends in Malicious Packages Targeting Discord
The Socket research team breaks down a sampling of malicious packages that download and execute files, among other suspicious behaviors, targeting the popular Discord platform.
@nlxio/common-ui
Advanced tools
Readme
This repository contains common UI components for the NLX project.
You can import components from common UI one by one. Install the common-ui
package by running:
$ npm install --save @nlxio/common-ui
Then you should be able to import components like this:
import React from "react";
import ReactDOM from "react-dom";
import { Button } from "@nlxio/common-ui";
ReactDOM.render(<Button>Hello world!</Button>, document.getElementById("root"));
We use Storybook to develop and test new components. To get Storybook up and running, use:
$ npm install
$ npm run storybook
The package.json
defines a number of scripts that are used to build the project:
npm run build
: Builds all the JavaScript files using Babel.npm run test
: Lints and tests all the JavaScript files.To publish a new version of the library, first login to the NPM registry:
$ npm login
Then build a new version by running:
$ npm run build
You can bump the version in the package.json
and package-lock.json
by running:
$ npm version [ patch | minor | major ]
Finally publish a new version using:
$ npm publish
For more information about publishing NPM packages, consult the official documentation.
To use an unpublished version of common-ui
in other projects on your local machine, you can use the npm link
command.
$ npm link
common-ui
project and run:$ npm link @nlxio/common-ui
This last command created a symlink in the node_modules
of the project to the local common-ui
folder.
Common-ui components should be build language neutral and language independent. All labels and language specific strings need to be provided to common-ui component as a property by parent component. These parent components are project specific and not part of the common-ui library.
In November 2018 frontend team decided that NLX front-end applications should use i18next library for internationalization.
FAQs
The common components of the NLX project
We found that @nlxio/common-ui demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 5 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
The Socket research team breaks down a sampling of malicious packages that download and execute files, among other suspicious behaviors, targeting the popular Discord platform.
Security News
Socket CEO Feross Aboukhadijeh joins a16z partners to discuss how modern, sophisticated supply chain attacks require AI-driven defenses and explore the challenges and solutions in leveraging AI for threat detection early in the development life cycle.
Security News
NIST's new AI Risk Management Framework aims to enhance the security and reliability of generative AI systems and address the unique challenges of malicious AI exploits.