Research
Security News
Malicious npm Package Targets Solana Developers and Hijacks Funds
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
By Socket Research Team - Dec 02, 2024
Huge News!Announcing our $40M Series B led by Abstract Ventures.Learn More →
be-navigation
Advanced tools
Buyer Experience Navigation
Buyer Experience Navigation (be-navigation) contains a modular navigation for about.gitlab.com.
- be-navigation is a Vite library that features our implementation of GitLab's marketing website's navigation.
- be-navigation is a collection of navigation components. Currently housing the main navigation and the footer.
- be-navigation uses GitLab's Slippers UI design system.
Getting Started
Dependencies
- Node - Check
.nvmrc,.tool-versions,.npmrcfor the current node version.
Local development
Start app: yarn dev
Lint: yarn lint
Serve built app: yarn preview
Transitioning from Vue CLI 2
In previous versions, we had used Vue CLI, so make sure to update yarn install dependencies if you had used this repo before the transition to Vite. Another big change we noticed was the removal of the scoped attribute in Single File Components. This was leading to large CSS payloads. We should aim to keep the contents of /dist under ~250kb to make sure that it is production optimized.
One consequence of this transition was that we broke Review Apps for this repo. We should configure that as soon as we have bandwidth for that.
Updating NPM package and releasing a new version
- Create a new issue titled
Navigation release: Version x.x.xxand include links to the MRs and Issues included in this release - Create a new branch from
main, with all changes - Increment the version number in
package.json - Build /dist folder -
yarn build - Publish to npm -
npm publish(Note: You may need to login with your npm credentials usingnpm login) - Merge changes to
origin/main - Once the package has been published it's now ready to be updated in the consuming repositories (Example: www, Buyer Experience). Include links to those MRs in your Navigation Release Issue
- Close the Navigation Release Issue
Installation
be-navigation is available as an npm package.
// with npm
npm install be-navigation
// with yarn
yarn add be-navigation
FAQs
GitLab Marketing Navigation
The npm package be-navigation receives a total of 1,445 weekly downloads. As such, be-navigation popularity was classified as popular.
We found that be-navigation demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 12 open source maintainers collaborating on the project.
Package last updated on 30 Jul 2024
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
Research
Typosquatting Cryptographic Libraries: Malicious npm Packages Threaten Crypto Developers with Keylogging and Wallet Theft
Socket researchers have discovered malicious npm packages targeting crypto developers, stealing credentials and wallet data using spyware delivered through typosquats of popular cryptographic libraries.
By Kirill Boychenko - Nov 27, 2024
Security News
Weekly Downloads Now Available in npm Package Search Results
Socket's package search now displays weekly downloads for npm packages, helping developers quickly assess popularity and make more informed decisions.
By Sarah Gooding - Nov 26, 2024