Security News
Research
Data Theft Repackaged: A Case Study in Malicious Wrapper Packages on npm
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
@sap-ux/adp-tooling
Advanced tools
@sap-ux/adp-tooling
A module containing different tooling modules helpful when working with SAP UI5 adaptation projects.
The submodule preview contains functionality allowing to preview adaptation projects. It is not a standalone UI5 middleware but designed to be integrated into the @sap-ux/preview-middleware.
.
The submodule writer contains functionality to generate the core project structure of an SAPUI5 adaptation project. It is not a standalone generator but designed to be integrated into @sap-ux/create
or any kind of yeoman generator.
The submodule contains prompting functionality for SAPUI5 adaptation project generators. It is not a standalone module but designed to be integrated into @sap-ux/create
or any kind of yeoman generator.
Provides prompting for creating a manifest change file for replacing OData Sources.
The submodule contains functionality required in different scenarios, e.g. prompting for generation or when initializing the preview.
The templates folder contains ejs templates to be used for the generation of new adaptation projects as well as to generate artifacts in existing adaptation projects.
FAQs
Tooling for UI5 adaptation projects
The npm package @sap-ux/adp-tooling receives a total of 114,674 weekly downloads. As such, @sap-ux/adp-tooling popularity was classified as popular.
We found that @sap-ux/adp-tooling demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Research
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
Research
Security News
Attackers used a malicious npm package typosquatting a popular ESLint plugin to steal sensitive data, execute commands, and exploit developer systems.
Security News
The Ultralytics' PyPI Package was compromised four times in one weekend through GitHub Actions cache poisoning and failure to rotate previously compromised API tokens.