Research
Security News
Malicious npm Package Targets Solana Developers and Hijacks Funds
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
dom99 is a JavaScript framework focused to make web development faster. Select HTML elements, add event listeners, synchronize state with the view, clone HTML templates with your data and insert them directly in the document.
<!-- The input and the paragraph as well as the js variable always have the same value -->
<input data-variable="text">
<p data-variable="text"></p>
<script>
d.feed({text : "Hello dom99"});
d.start();
console.log(d.variables.text);
</script>
By default dom99 is optimized for first page load, that means the size is small.
Get up an running fast. dom99 does not attempt to invent for the nth time how to write if
statements and for
loops inside HTML. Put logic in JS, and mark-up that you already know in HTML. HTML being used when sufficient we respect the minimal responsibility principle.
Designers and Developers can work on the same files. Elements in the mark-up linked to the DOM use data-*
instead of the overused class
and id
. The benefits to this approach is that the developers can safely add data-attributes to stylized components without breaking the styles, and the designers can safely add classes
and ids
without breaking anything.
Get up an running fast. Documentation Use a premade starter pack create-dom99-app.
dom99 is a web framework and is an extension to web standards HTML, CSS and JS, and does not intent to be a replacement.
dom99 can be used in a zero-second compile time development set-up with ES-modules.
No virtual dom is used for maximum possible performance.
Read chrismorgan about DOM and VDOM on HN.
dom99 is unopinionated. Bigger frameworks can be built on top of it. That means you can chose your own architecture, state management system, CSS system etc
Locally found in documentation/documentation-original.html
<!--
Define the template for an user
every user has a picture, a short biography, and a contact button
-->
<template data-template="user-element">
<img data-variable="picture">
<p data-variable="bio">SHORT BIO</p>
<button>Contact</button>
</template>
<!--
The list variable name is "users" and the template used is "user-element"
native html elements can also be used to display a list
-->
<div data-list="users" data-use="user-element"></div>
<script type="module">
import * as d from "./node_modules/dom99/built/dom99.es.js";
d.feed({users :
[
{
picture: "usera.jpg",
bio: "Loves biking and skating"
},
{
picture: "userb.jpg",
bio: "Drinks tons of café."
}
]
});
d.start();
</script>
<div data-list="*users-user-element">
<img data-variable="*picture" alt="user-picture" src="usera.jpg">
<p data-variable="*bio">Loves biking and skating</p>
<button>Contact</button>
<img data-variable="*picture" alt="user-picture" src="userb.jpg">
<p data-variable="*bio">Drinks tons of café.</p>
<button>Contact</button>
</div>
npm run build-all
to run all scripts in package.json in one go
open tests/specification/SpecRunner.html to run unit tests
FAQs
Extend html with directives
The npm package dom99 receives a total of 14 weekly downloads. As such, dom99 popularity was classified as not popular.
We found that dom99 demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
Security News
Research
Socket researchers have discovered malicious npm packages targeting crypto developers, stealing credentials and wallet data using spyware delivered through typosquats of popular cryptographic libraries.
Security News
Socket's package search now displays weekly downloads for npm packages, helping developers quickly assess popularity and make more informed decisions.