Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@servicetitan/tokens
Advanced tools
AnvilColorToken.kt
and AnvilThemeToken.kt
from build/kotlin/{theme}
folderAnvilColorToken.kt
contains base colors.AnvilThemeToken.kt
contains color pairings for the light and the dark mode.AnvilThemeToken.AppBackground.forTheme()
AnvilColorToken.Neutral10
To include this package, add to your Package.swift
:
dependencies: [
.package(
url: "https://github.com/servicetitan/tokens.git",
from: "12.0.0"
)
]
import AnvilCore
Text("Hello World")
.foregroundColor(.anvil(.neutral10))
$ npm i @servicetitan/tokens
import { core } from "@servicetitan/tokens";
import { light, dark, tokens } from "@servicetitan/tokens/core";
@import (reference) '@servicetitan/tokens/core/tokens.less';
@import '@servicetitan/tokens/core/tokens.css';
.
All of the design tokens and assets for Anvil are in this package. It generates assets for iOS (Swift), Android (Kotlin), and web.
To get started, run:
$ npm install
$ npm run build
The npm run build
command runs style-dictionary build steps to generate the files for each platform. Every time you change something in the style dictionary, such as changing a color value or adding a new design token, you'll have to run this command again to generate the updated assets.
Don't forget that we also have Figma counterpart that requires update when there is any change (May 2022).
Link to Figma guide: https://www.figma.com/file/N0wRgro1ZHxK0VTIyoj2li/Anvil-Theme-Core?node-id=1204%3A1733
tokens/themes/<theme name>
with the new valuenpm run build
to update the assets in the build
folderAdding a new design token requires all existing themes to have respective token defined. This only applies to color related tokens for now (May 2022).
Steps to adding new design token:
tokens/themes/theme.d.ts
with the new tokennpm run build
to update the assets in the build
folderCopy a theme to base on, for example tokens/themes/core
, and make changes to the values.
FAQs
## Usage for Android (Kotlin)
The npm package @servicetitan/tokens receives a total of 3,743 weekly downloads. As such, @servicetitan/tokens popularity was classified as popular.
We found that @servicetitan/tokens demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 7 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.