Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
@uploadcare/blocks
Advanced tools
Website • Quick Start • Docs • Blog • Discord • Twitter
Uploadcare Blocks is a powerful JavaScript library for creating custom file-handling services. It includes various interactive and customizable UI components to enhance users' file uploading and processing experience. As a bonus, you receive all the Uploadcare's versatile file-handling capabilities, including smart CDN, MIME-type filtering, signed uploads, and even more.
See Uploadcare Blocks in action!
We provide a ready-to-use set of UI components for file handling. It saves you valuable development time and effort, allowing you to focus on other core aspects of your application. You even don't need to build a stage while developing — just run the code directly from the browser.
Uploadcare Blocks are designed to work seamlessly across various platforms and frameworks. Whether you're building a web application using React, Vue.js, Angular, Svelte, or other frameworks, you get integrations and support for various development environments.
The library comes with modern technologies at your fingertips, like Web Components, ESM-level code sharing, and other cutting-edge web standards. Uploadcare Blocks is designed lightweight with minimum external dependencies for a cheap security audit.
We use JSDoc type annotations and type definitions (*.d.ts files) for TypeScript static analysis support during development.
{{PACKAGE_VERSION}}
with the latest version of the package:<script type="module">
import * as LR from 'https://cdn.jsdelivr.net/npm/@uploadcare/blocks@{{PACKAGE_VERSION}}/web/blocks.min.js';
LR.registerBlocks(LR);
</script>
{{PACKAGE_VERSION}}
with the latest one):<link
rel="stylesheet"
href="https://cdn.jsdelivr.net/npm/@uploadcare/blocks@{{PACKAGE_VERSION}}/web/lr-file-uploader-regular.min.css"
/>
<lr-file-uploader-regular ctx-name="my-uploader"> </lr-file-uploader-regular>
npm i --save-exact @uploadcare/blocks
Blocks
from your script file:import * as LR from '@uploadcare/blocks';
LR.registerBlocks(LR);
{{PACKAGE_VERSION}}
with the latest version of the package:<link
rel="stylesheet"
href="https://cdn.jsdelivr.net/npm/@uploadcare/blocks@{{PACKAGE_VERSION}}/web/lr-file-uploader-regular.min.css"
/>
<lr-file-uploader-inline ctx-name="my-uploader"> </lr-file-uploader-inline>
All configurations in Uploadcare Blocks are managed from lr-config
block.
lr-config
block to your markup and replace YOUR_PUBLIC_KEY
with your own public key:<lr-config ctx-name="my-uploader" pubkey="YOUR_PUBLIC_KEY"></lr-config>
ctx-name
attribute value as your solution block.Discover more about Uploadcare Blocks configuration in our documentation.
Follow our step-by-step installation guide to launch Uploadcare Blocks in a few minutes and set it up based on your needs.
Latest desktop and mobile stable versions of Chrome, Edge, Firefox, Opera, and Safari are supported.
Internet Explorer is outdated and not supported anymore.
Uploadcare Blocks is a framework-agnostic solution, so you can use it with any runtime you like. Discover the integration examples:
All the source code is accessible and works in raw mode. Use developer tools to dive into details.
You’re always welcome to contribute:
npm install
.npm run dev
.FAQs
Building blocks for Uploadcare products integration
The npm package @uploadcare/blocks receives a total of 4,816 weekly downloads. As such, @uploadcare/blocks popularity was classified as popular.
We found that @uploadcare/blocks demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.