🚨 Shai-Hulud Strikes Again:834 Packages Compromised.Technical Analysis β†’
Socket
Book a DemoInstallSign in
Socket
Book a DemoInstallSign in

@vivareal/lina-tokens

Package Overview
Dependencies
Maintainers
110
Versions
89
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

@vivareal/lina-tokens

Project responsible for transforming and formatting design tokens

latest
Source
npmnpm
Version
2.12.0
Version published
Maintainers
110
Created
Source

Lina Tokens

The Lina Design System Tokens library

Project responsible for transforming and formatting Design Tokens for our brands.

Using in your project

Install it as a dependency

npm install --save @vivareal/lina-tokens
# OR
yarn add -d @vivareal/lina-tokens

This is a private repo, so you'll need to be logged in NPM in order to install it. Also, you have to be part of vivareal organization at NPM. If you're not, please ask at Slack's #guild-front channel to be added =)

Installing

Go to root folder and then

make install

Build the tokens

make build

and the web and Android files will be built and placed on the dist folder.

make build-ios

will build iOS files and save it at packages/lina-ios

make build-all

will build all platforms.

lina-ios files should only be added to git history by commit releases.

Tests

Running tests

yarn test
# or
make test

Remove obsolete tests

yarn test:update
# or
make test obsolete=true

Developing locally

make docs-dev

Folder structure

β”œβ”€β”€ README.md
β”œβ”€β”€ build/
β”‚   β”œβ”€β”€ iosLib.js  // code necessary to build the iOS tokens for lina-ios
β”‚   β”œβ”€β”€ tokens.js  // code necessary to build all the other platforms tokens
β”œβ”€β”€ configs/
β”œβ”€β”€ src/
β”‚   β”œβ”€β”€ brands/ // brand-specific tokens are here
β”‚       β”œβ”€β”€ <BRAND>
β”‚           β”œβ”€β”€ ios/
β”‚               β”œβ”€β”€ components/*.json
β”‚               β”œβ”€β”€ general/*.json
β”‚           β”œβ”€β”€ web/
β”‚               β”œβ”€β”€ components/*.json
β”‚   β”œβ”€β”€ global/  // tokens for all brands and platforms here
β”‚       β”œβ”€β”€ *.json
β”‚   β”œβ”€β”€ platforms/  // mirrors <BRAND> structure, using its values to build
β”‚       β”œβ”€β”€ ios/
β”‚           β”œβ”€β”€ components/*.json
β”‚           β”œβ”€β”€ general/*.json
β”‚       β”œβ”€β”€ web/
β”‚           β”œβ”€β”€ components/*.json
β”œβ”€β”€ dist
β”‚   β”œβ”€β”€ <BRAND>
β”‚      β”œβ”€β”€ android/
β”‚         β”œβ”€β”€ <BrandName>Tokens.kt
β”‚      β”œβ”€β”€ android-legacy/
β”‚         β”œβ”€β”€ <BrandName>Tokens.xml
β”‚      β”œβ”€β”€ css/
β”‚         β”œβ”€β”€ variables.css
β”‚      β”œβ”€β”€ javascript/
β”‚         β”œβ”€β”€ tokens.module.js
β”‚      β”œβ”€β”€ json/
β”‚         β”œβ”€β”€ tokens.raw.json
β”‚      β”œβ”€β”€ scss/
β”‚         β”œβ”€β”€ _variables.scss

Contributing

Creating / Editing a token

Tokens are created using Amazon's Style Dictionary.
Please read the docs before starting to create or edit a token.

Release

Releases are managed by Github Workflow. Please check the root's README for more infos.

Keywords

lina
design
system
tokens

FAQs

Package last updated on 23 Jan 2023

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

npm Sees Surge of Auto-Generated β€œelf-stats” Packages Published Every Two Minutes

Research

/

Security News

npm Sees Surge of Auto-Generated β€œelf-stats” Packages Published Every Two Minutes

We spotted a wave of auto-generated β€œelf-*” npm packages published every two minutes from new accounts, with simple malware variants and early takedowns underway.

By Olivia BrownΒ  - Β Dec 03, 2025