![Malicious npm Package Typosquats react-login-page to Deploy Keylogger](https://cdn.sanity.io/images/cgdhsj6q/production/007b21d9cf9e03ae0bb3f577d1bd59b9d715645a-1024x1024.webp?w=400&fit=max&auto=format)
Research
Security News
Malicious npm Package Typosquats react-login-page to Deploy Keylogger
Socket researchers unpack a typosquatting package with malicious code that logs keystrokes and exfiltrates sensitive data to a remote server.
@zeplin/cli
Advanced tools
Readme
Install Zeplin CLI using npm.
npm install -g @zeplin/cli
zeplin <command> [options]
Placeholder description here.
zeplin connect
Options | Description | Default |
---|---|---|
-f, --file | Full path to components config file | .zeplin/components.json |
-d, --dev-mode | Activate development mode | false |
--port | Optional port number for development mode | 9756 |
-p, --plugin | NPM package name of a Zeplin CLI connect plugin | |
-h, --help | output usage information |
Specify a custom path for components config file.
zeplin connect -f path/to/your-components.json
You can use multiple config files and multiple plugins at once.
zeplin connect -f path/to/components.json -f path/to/other/components.json -p plugin-npm-package-name -p other-plugin-npm-package-name
Install connect plugin using npm.
npm install -g @zeplin/cli-connect-react-plugin
Execute connect command using the plugin.
zeplin connect -p @zeplin/cli-connect-react-plugin
NPM package name | Description |
---|---|
@zeplin/cli-connect-react-plugin | Generates snippet samples using React PropTypes |
@zeplin/cli-connect-swift-plugin | Generates snippet using Swift components (*) |
@zeplin/cli-connect-kotlin-plugin | Generate snippets using Kotlin components (*) |
(*) - Since the language has no popular convention of component like React components, we have defined a sample component for the language. The plugin is only compatible with this component convention. Feel free to use these plugins as a base for a custom plugin compatible with your own codebase. Check Custom Plugins below.
You can develop a custom plugin to extract/generate description and snippets of your code base.
npm install --save-dev @zeplin/cli
You can find details about plugin development here.
FAQs
Unknown package
We found that @zeplin/cli demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 5 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers unpack a typosquatting package with malicious code that logs keystrokes and exfiltrates sensitive data to a remote server.
Security News
The JavaScript community has launched the e18e initiative to improve ecosystem performance by cleaning up dependency trees, speeding up critical parts of the ecosystem, and documenting lighter alternatives to established tools.
Product
Socket now supports four distinct alert actions instead of the previous two, and alert triaging allows users to override the actions taken for all individual alerts.