
Security News
Research
Supply Chain Attack on Rspack npm Packages Injects Cryptojacking Malware
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
This repository contains a portion of the Wenlin CDL JavaScript API.
This project is for building cdl-utils.js, which, along with cdl-utils-ui.js, is available at http://wenlincdl.com/docs/getting-started
There are also NPM packages. See: https://www.npmjs.com/package/cdl-utils and https://www.npmjs.com/package/cdl-utils-ui
Files in this repository are offered for licensing under the AGPL v.3 license. See: https://www.gnu.org/licenses/agpl.html
For other licensing options, see: http://wenlin.com/developers
Much of the Wenlin CDL JavaScript API is derived from the C source code for the desktop (Mac/Windows/Linux) application Wenlin Software for Learning Chinese. Authors: Tom Bishop, Richard Cook, David Chanin and other members of the Wenlin development team.
Info about the Wenlin CDL JavaScript API: see https://wenlincdl.com
Terms of Service: See https://wenlincdl.com/terms
Copyright (c) 2017 Wenlin Institute, Inc. SPC.
CdlUtils uses mocha and chai for tests. To run tests, first:
yarn install
then, to run tests:
mocha
you may need to run npm install -g mocha
if the mocha
command isn't found
CdlUtils uses webpack to bundle all the JS together for the browser, and makes it available under a global window.CdlUtils
object. To build:
yarn install
grunt
you may need to run npm install -g grunt
if the grunt
command isn't found
The compiled JS will be put into the dist
folder.
FAQs
CdlUtils uses mocha and chai for tests. To run tests, first:
The npm package cdl-utils receives a total of 2 weekly downloads. As such, cdl-utils popularity was classified as not popular.
We found that cdl-utils demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.
Security News
Sonar’s acquisition of Tidelift highlights a growing industry shift toward sustainable open source funding, addressing maintainer burnout and critical software dependencies.