Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
一个帮助你快速开发产品的Vue组件库,简洁好用,效率高,让你摆脱各种定制化的烦恼。
推荐使用 npm 的方式进行开发,不仅可在开发环境轻松调试,也可放心地在生产环境打包部署使用,享受整个生态圈和工具链带来的诸多好处。 可以通过 npm 直接安装到项目中,使用 import 或 require 进行引用。
npm install edu-ui
引入 rdDatepicker
日历组件并局部注册并定义日历组件的数据对象及配置
import { rdDatepicker } from 'edu-ui'
export default {
data () {
return {
datePicker: {
value: '',
options: {
quickClose: true,
format: 'YYYY/MM/DD'
}
}
}
},
components: {
rdDatepicker
}
}
在模板中任意位置放置日历组件并使用 v-bind
语法将数据动态绑定 date
属性上。
<template>
<div class="container">
<rd-datepicker :date="datePicker"></rd-datepicker>
</div>
</template>
先在项目的入口文件中引入 eduUI 的全局组件安装方法。
// main.js
import Vue from 'vue'
import { eduInstall } from 'edu-ui'
Vue.use(eduInstall)
推荐在 Vue 的根实例中放置全局组件的位置
<!-- template -->
<template>
<div class="container">
<router-view></router-view>
<!-- edu global components -->
<rd-modal></rd-modal>
<rd-notification></rd-notification>
<rd-loadingbar></rd-loadingbar>
<rd-preview></rd-preview>
</div>
</template>
可以在任何组件中调用相应的全局组件的实例方法
// any vue components
methods: {
someAction () {
// 生成系统通知
this.$Notification.success('编辑成功', '', 5000)
},
open () {
// 确认弹窗
this.$Modal.create(
'这里是标题',
'这里应该说点什么',
() => {
// confirm callback
},
() => {
// cancel callback
}
)
}
}
V 0.3.0
Chrome Safari
FAQs
A Vue.js components lib
The npm package edu-ui receives a total of 270 weekly downloads. As such, edu-ui popularity was classified as not popular.
We found that edu-ui demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.