Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@teambit/eslint
Advanced tools
bit write-tsconfig
to write tsconfig files in the components directories (#6506 #6531)bit scope-rename
- --refactor
flag now rename aspect-ids in workspace.jsonc
(#6564)bit status
identify duplicate component and package (#6546)status
and tag
when tracked component exists as a package in workspace.jsonc
. (#6546)status
. (#6546)bit import --dependents
- builds a graph of all components in the workspace, searches for all paths from them to the target component-id(s) given in the command and imports them.(#6552)status
always show the full-id (#6201)bit graph
supports JSON output with --json
(#6497)bit status
supports showing updates from forked lanes (#6575)bit lane
show the full lane-id (#6561)bit lane merge
shows a summary report of component state (merged/unchanged/failed/snapped) (#6500)modifiedComponent
to modifiedComponents
in the status json output. (#6201)bit build
- replace --all
flag with --unmodified
(#6553)bit status --json
returns component-ids, not the whole component objects. (#6201)bit remove
- fix "Maximum call stack size exceeded" error when the graph deps is huge (#6565)tag
or snap
(#6567)bit aspect update
- indicate in the output when components are up to date (#6566)bit show
- avoid throwing EnvNotFound
when running on a remote component (#6556)createEsmCompilerTask
signatureuseComponentFilters
(#6527)bit export
- fix parent-not-found
error when sending multiple snaps to a remote (#6528)bit lane merge
merge components that exist on a local-lane and in .bitmap
with isAvailableOnCurrentLane=false
(#6521)ComponentNotFound
when .bitmap
has a non-exist version on the scope (#6496)bit install
show a clear error when running outside a workspace (#6522)bit reset
- make local-versions on lane be aware of main to not reset it (#6516)bit export
- send only objects needed when exporting on lane and do not rely on the cache (#6504)bit import
- exclude lane-only components when importing entire scope (#6499)bit import
(#6572)fetchWithDeps
(#6534)bit export
- improve lane export performance (#6507)importManyWithAllVersions
, refactor some import methods (#6542)applyVersion
of the merge command to not run in parallel, so then it won't run importMany
in parallel. (#6542)FAQs
Unknown package
The npm package @teambit/eslint receives a total of 422 weekly downloads. As such, @teambit/eslint popularity was classified as not popular.
We found that @teambit/eslint demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.