Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
@untemps/react-vocal
Advanced tools
A React component and hook to initiate a SpeechRecognition session
:red_circle: LIVE DEMO :red_circle:
The Web Speech API is only supported by few browsers so far (see caniuse). If the API is not available, the Vocal
component won't display anything.
yarn add @untemps/react-vocal
Vocal
componentimport Vocal from '@untemps/react-vocal'
const App = () => {
const [result, setResult] = useState('')
const _onVocalStart = () => {
setResult('')
}
const _onVocalResult = (result) => {
setResult(result)
}
return (
<div className="App">
<span style={{ position: 'relative' }}>
<Vocal
onStart={_onVocalStart}
onResult={_onVocalResult}
style={{ width: 16, position: 'absolute', right: 10, top: -2 }}
/>
<input defaultValue={result} style={{ width: 300, height: 40 }} />
</span>
</div>
)
}
By default, Vocal
displays an icon with two states (idle/listening):
But you can provide your own component:
import Vocal from '@untemps/react-vocal'
const App = () => {
const [isListening, setIsListening] = useState('')
const _onSpeechStart = () => {
setIsListening(true)
}
const _onSpeechEnd = () => {
setIsListening(false)
}
return (
<Vocal onSpeechStart={_onSpeechStart} onSpeechEnd={_onSpeechEnd}>
{isListening ? 'Waiting for vocal' : <button>Click to speech</button>}
</Vocal>
)
}
The component passed as children must respect the following constraints:
onClick
handler used to trigger the recognition session. If the component provides its own onClick
callback, it will be overridden by the Vocal component implementation.Props | Type | Default | Description |
---|---|---|---|
lang | string | 'en-US' | Language understood by the recognition BCP 47 language tag |
grammars | SpeechGrammarList | null | Grammars understood by the recognition JSpeech Grammar Format |
timeout | number | 3000 | Time in ms to wait before discarding the recognition |
style | object | null | Styles of the root element if className is not specified |
className | string | null | Class of the root element |
onStart | func | null | Handler called when the recognition starts |
onEnd | func | null | Handler called when the recognition ends |
onSpeechStart | func | null | Handler called when the speech starts |
onSpeechEnd | func | null | Handler called when the speech ends |
onResult | func | null | Handler called when a result is recognized |
onError | func | null | Handler called when an error occurs |
onNoMatch | func | null | Handler called when no result can be recognized |
useVocal
hookimport React, { useState } from 'react'
import { useVocal } from '@untemps/react-vocal'
import Icon from './Icon'
const App = () => {
const [isListening, setIsListening] = useState(false)
const [result, setResult] = useState('')
const [, {start, subscribe}] = useVocal('fr_FR')
const _onButtonClick = () => {
setIsListening(true)
subscribe('speechstart', _onVocalStart)
subscribe('result', _onVocalResult)
subscribe('error', _onVocalError)
start()
}
const _onVocalStart = () => {
setResult('')
}
const _onVocalResult = (result) => {
setIsListening(false)
setResult(result)
}
const _onVocalError = (e) => {
console.error(e)
}
return (
<div>
<span style={{ position: 'relative' }}>
<div
role="button"
aria-label="Vocal"
tabIndex={0}
style={{ width: 16, position: 'absolute', right: 10, top: 2 }}
onClick={_onButtonClick}
>
<Icon color={isListening ? 'red': 'blue'} />
</div>
<input defaultValue={result} style={{ width: 300, height: 40 }} />
</span>
</div>
)
}
useVocal(lang, grammars)
Args | Type | Default | Description |
---|---|---|---|
lang | string | 'en-US' | Language understood by the recognition BCP 47 language tag |
grammars | SpeechGrammarList | null | Grammars understood by the recognition JSpeech Grammar Format |
const [ref, { start, stop, abort, subscribe, unsubscribe, clean }]
Args | Type | Description |
---|---|---|
ref | Ref | React ref to the SpeechRecognitionWrapper instance |
start | func | Function to start the recognition |
stop | func | Function to stop the recognition |
abort | func | Function to abort the recognition |
subscribe | func | Function to subscribe to recognition events |
unsubscribe | func | Function to unsubscribe to recognition events |
clean | func | Function to clean subscription to recognition events |
import Vocal, {isSupported} from '@untemps/react-vocal'
const App = () => {
return isSupported ? (
<Vocal />
) : (
<p>Your browser does not support Web Speech API</p>
)
}
Events | Description |
---|---|
audioend | Fired when the user agent has finished capturing audio for recognition |
audiostart | Fired when the user agent has started to capture audio for recognition |
end | Fired when the recognition service has disconnected |
error | Fired when a recognition error occurs |
nomatch | Fired when the recognition service returns a final result with no significant recognition |
result | Fired when the recognition service returns a result |
soundend | Fired when any sound — recognisable or not — has stopped being detected |
soundstart | Fired when any sound — recognisable or not — has been detected |
speechend | Fired when speech recognized by the recognition service has stopped being detected |
speechstart | Fired when sound recognized by the recognition service as speech has been detected |
start | fired when the recognition service has begun listening to incoming audio |
The process to grant microphone access permissions is automatically managed by the hook (internally used by the Vocal
component).
The component can be served for development purpose on http://localhost:10001/
using:
yarn dev
Contributions are warmly welcomed:
[feature type]_[imperative verb]-[description of the feature]
)FAQs
React component and hook to initiate a SpeechRecognition session
We found that @untemps/react-vocal demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.