Security News
Supply Chain Attack Detected in @solana/web3.js Library
A supply chain attack has been detected in versions 1.95.6 and 1.95.7 of the popular @solana/web3.js library.
@oasislabs/style
Advanced tools
Universal Oasis styling, as per our design guidelines.
This repository comes with two projects:
Import oasis.scss
into an existing project. The project must be able to build scss
files correctly (using scss-loader
in webpack for example)
import '@oasislabs/style'
More documentation will come once this framework takes shape.
Import oasis.scss
into the top-level component. The project must be able to build scss
files correctly (using scss-loader
in webpack for example)
import '@oasislabs/style'
Import and use any component available in styles/vue/components
import { Button } from '@oasislabs/style/vue/components'
More documentation will come once this framework takes shape.
To help facilitate the development of new components, Storybook has been added.
When developing new components, create a story along with it.
To run storybook,
npm install
npm run storybook
Today, Storybook is set up for Vue, but it can also be added for other frameworks in the future
FAQs
Oasis Labs Styling
The npm package @oasislabs/style receives a total of 15 weekly downloads. As such, @oasislabs/style popularity was classified as not popular.
We found that @oasislabs/style demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 12 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
A supply chain attack has been detected in versions 1.95.6 and 1.95.7 of the popular @solana/web3.js library.
Research
Security News
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
Security News
Research
Socket researchers have discovered malicious npm packages targeting crypto developers, stealing credentials and wallet data using spyware delivered through typosquats of popular cryptographic libraries.