Security News
Research
Data Theft Repackaged: A Case Study in Malicious Wrapper Packages on npm
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
create-rx-app
Advanced tools
ReactXP project generator for building your next awesome cross-platform (Web, Android, iOS, Windows) app
To create a new app, you may choose one of the following methods:
npx create-rx-app AppName
npm init rx-app AppName
yarn create rx-app AppName
npm install create-rx-app -g
create-rx-app AppName
This will create a directory called AppName inside the current working directory. Inside AppName, this will generate the initial project structure and install all of its dependencies. Once this installation is done, there are some commands you can run in the project directory:
npm run start:web
or yarn start:web
- runs the Web version of the app in the development modenpm run build:web
or yarn build:web
- builds the Web version of the app for production to the dist-web foldernpm run start:ios
or yarn start:ios
- runs the iOS version of the app and attempts to open in the iOS Simulator if you're on a Mac and have it installednpm run start:android
or yarn start:android
- runs the Android version of the app and attempts to open your app on a connected Android device or emulatornpm run start:windows
or yarn start:windows
- runs the Windows version of the appnpm run start:rn-dev-server
or yarn start:rn-dev-server
- runs react native (RN) development server--javascript generate project in JavaScript
--skip-install don't automatically install dependencies
--skip-jest don't automatically add Jest configuration
--skip-yarn don't use Yarn for managing dependencies
-v, --version output the version number
-h, --help output usage information
This software is released under the terms of the MIT license.
FAQs
ReactXP Project Generator
We found that create-rx-app demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Research
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
Research
Security News
Attackers used a malicious npm package typosquatting a popular ESLint plugin to steal sensitive data, execute commands, and exploit developer systems.
Security News
The Ultralytics' PyPI Package was compromised four times in one weekend through GitHub Actions cache poisoning and failure to rotate previously compromised API tokens.