
Research
wget to Wipeout: Malicious Go Modules Fetch Destructive Payload
Socket's research uncovers three dangerous Go modules that contain obfuscated disk-wiping malware, threatening complete data loss.
Documentation • Tutorials • Quick start guide • Workflows • bit.dev components cloud • Video demo
Bit is an open-source cli tool for collaborating on isolated components across projects and repositories.
Use Bit to distribute discrete components from a design library or a project into a standalone reusable package and utilize it across applications.
You can set up your own server for components collaboration, or use the bit.dev cloud hosting for private and public components sharing.
Bit facilitates the process of collaborating on UI components. Team members can share, maintain, and synchronize isolated components from different projects.
Bit allows teams to:
Bit is working with Javascript and Javascript frameworks:
Using npm:
npm install bit-bin --global
Using yarn:
yarn global add bit-bin
Bit cli requires node 8.12 and above. Check other installation methods.
Use bit.dev cloud hosting solution as a shared server and showcase for your components.
Contributions are always welcome, no matter how large or small. Before contributing, please read the code of conduct.
See Contributing.
Apache License, Version 2.0
FAQs
<img alt="prs" src="https://img.shields.io/b
The npm package bit-bin receives a total of 485 weekly downloads. As such, bit-bin popularity was classified as not popular.
We found that bit-bin demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 8 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Socket's research uncovers three dangerous Go modules that contain obfuscated disk-wiping malware, threatening complete data loss.
Research
Socket uncovers malicious packages on PyPI using Gmail's SMTP protocol for command and control (C2) to exfiltrate data and execute commands.
Product
We redesigned Socket's first logged-in page to display rich and insightful visualizations about your repositories protected against supply chain threats.