Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@sendgrid/design-icons
Advanced tools
Icon library for use across SendGrid products. This package is still a work in progress,
and will eventually be used to replace the current <i class="sg-icon>
elements. This will also
be used in a future React icon component.
npm install @sendgrid/design-icons --save
The SendGrid icon library can be used as a project dependency or imported into a project by including a javascript file.
Note: This project contains no styles. Those will need to be added on a per project basis.
If using the projet as a dependency, install the project via yarn
or npm
using the installation instructions above.
Once installed, add the SVG sprite to your project.
Basic html
example:
<div style="display: none;>
<?xml version="1.0" encoding="utf-8"?>
<svg>
...
</svg>
</div>
Once the sprite is loaded you can use an SVG icon using the following:
<svg>
<use xlink:href="#ICON_NAME" />
</svg>
If using the project as a dependency, add the following code snippet to your project:
<script src="https://uiux.s3.amazonaws.com/style-guide/js/design-icons.min.js"></script>
Once the javascriopt is loaded you can use an SVG icon using the following:
<svg>
<use xlink:href="#ICON_NAME" />
</svg>
FAQs
Sendgrid icon library
The npm package @sendgrid/design-icons receives a total of 8 weekly downloads. As such, @sendgrid/design-icons popularity was classified as not popular.
We found that @sendgrid/design-icons demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 20 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.