Research
wget to Wipeout: Malicious Go Modules Fetch Destructive Payload
Socket's research uncovers three dangerous Go modules that contain obfuscated disk-wiping malware, threatening complete data loss.
By Kush Pandya - May 01, 2025
📅 You're Invited: Meet the Socket team at RSAC (April 28 – May 1).RSVP →
@vidstack/elements
Advanced tools
@vidstack/elements
Spec-compliant, customizable, extensible, accessible and universal media elements.
Vidstack Elements
Spec-compliant customizable, extensible, accessible and universal media elements. The successor to
Vime 5.x and Plyr 3.x.
🚨 Alpha
This pre-release is not yet feature complete or API stable. Please use at your own risk until the stable release is available. Issues are welcome for unexpected changes.
💿 Installation
NPM
$: npm install @vidstack/elements
📖 Documentation
Documentation is currently not available.
🖥️ Browsers
Vidstack Elements is built for the modern web and avoids bloated polyfills and outdated environments as much as possible. It'll only support browsers that fully implement the Custom Elements V1 and CSS Parts specifications.
- Edge 79+
- Firefox 72+
- Chrome 73+
- Safari 13.1+
- Opera 64+
- iOS Safari 13.7+
- Android Browser 81+
- Opera Mobile 59+
- Chrome for Android 88+
🔨 Contributing
See CONTRIBUTING.md.
📝 License
Vidstack Elements is MIT licensed.
❤️ Sponsors
A huge thanks to our sponsors who support open-source projects like Vidstack Elements.
FAQs
Spec-compliant, customizable, extensible, accessible and universal media elements.
The npm package @vidstack/elements receives a total of 81 weekly downloads. As such, @vidstack/elements popularity was classified as not popular.
We found that @vidstack/elements demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 10 Dec 2021
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
Using Trusted Protocols Against You: Gmail as a C2 Mechanism
Socket uncovers malicious packages on PyPI using Gmail's SMTP protocol for command and control (C2) to exfiltrate data and execute commands.
By Olivia Brown - Apr 30, 2025
Product
A New Overview in our Dashboard
We redesigned Socket's first logged-in page to display rich and insightful visualizations about your repositories protected against supply chain threats.
By André Staltz - Apr 29, 2025