Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
@pontem/liquidswap-widget
Advanced tools
A web component custom element which can be embedded to any frontend application or even plain html / js / css. Using full strength of @pontem/liquidswap-sdk widget can provide swap operations with multiple wallets.
yarn add @pontem/liquidswap-widget
or
npm install @pontem/liquidswap-widget
Function loadWidget
accepts widgets HTML tag name. It can be custom name but should be in kebab case.
We recommend to use 'liquidswap-widget' name. Passed name should be exactly the same as tag name.
import React, { useLayoutEffect } from 'react';
import { loadWidget } from '@pontem/liquidswap-widget';
export const Widget = () => {
useLayoutEffect(() => {
loadWidget('liquidswap-widget');
}, []);
return (
<div className="'Your Wrapper className'">
<liquidswap-widget/>
</div>
);
};
<template>
<div class="'Your Wrapper class name'">
<liquidswap-widget>
</div>
</template>
<script setup lang="ts">
import { loadWidget } from '@pontem/liquidswap-widget';
loadWidget('liquidswap-widget');
</script>
liquidswap-widget
into app.<liquidswap-widget></liquidswap-widget>
loadWidget
function from npm and run with passing html tag name in kebab case;import { loadWidget } from '@pontem/liquidswap-widget';
loadWidget('liquidswap-widget');
See the open issues for a full list of proposed features (and known issues).
Contributions are what make the open source community such an amazing place to learn, inspire, and create. Any contributions you make are greatly appreciated.
If you have a suggestion that would make this better, please fork the repo and create a pull request. You can also simply open an issue with the tag "enhancement". Don't forget to give the project a star! Thanks again!
git checkout -b feature/AmazingFeature
)git commit -m 'Add some AmazingFeature'
)git push origin feature/AmazingFeature
)FAQs
Liquidswap widget as custom web component
The npm package @pontem/liquidswap-widget receives a total of 579 weekly downloads. As such, @pontem/liquidswap-widget popularity was classified as not popular.
We found that @pontem/liquidswap-widget demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.