Security News
tea.xyz Spam Plagues npm and RubyGems Package Registries
Tea.xyz, a crypto project aimed at rewarding open source contributions, is once again facing backlash due to an influx of spam packages flooding public package registries.
@workday/canvas-kit-css
Advanced tools
Changelog
v9.1.26 (2023-10-20)
Readme
The bundle package containing all modules of the Canvas CSS Kit.
In Canvas Kit v5, this package and it's components will be going into maintenance mode due to the infrequent use of our CSS modules. We will still support @workday/canvas-kit-css
with bug fixes and significant visual updates, but it generally won't be receiving new components, additional features, etc. This will allow us to provide more focused support, and dedicate our efforts to making bigger and better improvements to our most used components: Canvas Kit React. If you have questions or concerns, please let us know.
Canvas Kit CSS uses tilde ~
imports to resolve imports to your project's node_modules directory.
This is done automatically in Webpack's sass-loader.
If you would like to import outside of webpack you have a few options you can pass to the SASS
importer
option.
If you are using node_sass
you can try a third part importer such as node-sass-tilde-importer
If you are using dart_sass
you will need your own custom importer, e.g.:
const tildeImporter = (url: string): {file: string} => {
if (url[0] === '~') {
url = `./node_modules/${url.substr(1)}`;
}
return {file: url};
};
Troubleshooting:
In some cases your may need to add your node_modules
directory to your the SASS includePaths
option.
You will then be able to import any scss file index.scss
.
@import '~@workday/canvas-kit-css/index.scss';
FAQs
The parent module that contains all Workday Canvas Kit CSS components
The npm package @workday/canvas-kit-css receives a total of 328 weekly downloads. As such, @workday/canvas-kit-css popularity was classified as not popular.
We found that @workday/canvas-kit-css demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 6 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Tea.xyz, a crypto project aimed at rewarding open source contributions, is once again facing backlash due to an influx of spam packages flooding public package registries.
Security News
As cyber threats become more autonomous, AI-powered defenses are crucial for businesses to stay ahead of attackers who can exploit software vulnerabilities at scale.
Security News
UnitedHealth Group disclosed that the ransomware attack on Change Healthcare compromised protected health information for millions in the U.S., with estimated costs to the company expected to reach $1 billion.