Research
Security News
Malicious npm Package Typosquats react-login-page to Deploy Keylogger
Socket researchers unpack a typosquatting package with malicious code that logs keystrokes and exfiltrates sensitive data to a remote server.
@vaadin/icon
Advanced tools
Readme
<vaadin-icon> is a Web Component for creating SVG icons, part of the Vaadin components.
<vaadin-icon name="vaadin:user"></vaadin-icon>
Install vaadin-icon
:
npm i @vaadin/icon --save
Once installed, import it in your application:
import '@vaadin/icon/vaadin-icon.js';
Vaadin components use the Lumo theme by default.
To use the Material theme, import the corresponding file from the theme/material
folder.
The component with the Lumo theme:
theme/lumo/vaadin-icon.js
The component with the Material theme:
theme/material/vaadin-icon.js
Alias for theme/lumo/vaadin-icon.js
:
vaadin-icon.js
Read the contributing guide to learn about our development process, how to propose bugfixes and improvements, and how to test your changes to Vaadin components.
Apache License 2.0
Vaadin collects development time usage statistics to improve this product. For details and to opt-out, see https://github.com/vaadin/vaadin-usage-statistics.
FAQs
Unknown package
The npm package @vaadin/icon receives a total of 35,712 weekly downloads. As such, @vaadin/icon popularity was classified as popular.
We found that @vaadin/icon demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 12 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers unpack a typosquatting package with malicious code that logs keystrokes and exfiltrates sensitive data to a remote server.
Security News
The JavaScript community has launched the e18e initiative to improve ecosystem performance by cleaning up dependency trees, speeding up critical parts of the ecosystem, and documenting lighter alternatives to established tools.
Product
Socket now supports four distinct alert actions instead of the previous two, and alert triaging allows users to override the actions taken for all individual alerts.