Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@polymer/paper-material
Advanced tools
A material design container that looks like a lifted sheet of paper
paper-material
is a container that renders two shadows on top of each other to
create the effect of a lifted piece of paper.
⚠️ As of the 2.0 release, this element is deprecated in favour of the shared styles in PolymerElements/paper-styles
. Please see the implementation of PolymerElements/paper-button
for an example.
See: Documentation, Demo.
npm install --save @polymer/paper-material
<html>
<head>
<script type="module">
import '@polymer/paper-material/paper-material.js';
</script>
</head>
<body>
<paper-material elevation="1">
<div>Some content</div>
</paper-material>
</body>
</html>
import {PolymerElement, html} from '@polymer/polymer';
import '@polymer/paper-material/paper-material.js';
class SampleElement extends PolymerElement {
static get template() {
return html`
<paper-material elevation="1">
<div>Some content</div>
</paper-material>
`;
}
}
customElements.define('sample-element', SampleElement);
If you want to send a PR to this element, here are the instructions for running the tests and demo locally:
git clone https://github.com/PolymerElements/paper-material
cd paper-material
npm install
npm install -g polymer-cli
polymer serve --npm
open http://127.0.0.1:<port>/demo/
polymer test --npm
FAQs
A material design container that looks like a lifted sheet of paper
We found that @polymer/paper-material demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 11 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.