Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
ember-paper
Advanced tools
This project aims to bring Google's new Material Design to Ember. The goal is to encapsulate everything possible in Ember components. This project is packaged as an Ember-cli addon.
Temporary workaround. For now you need to run $ npm install --save-dev broccoli-autoprefixer
before installing ember-paper.
Install the ember-cli addon in your ember-cli project:
$ ember install:addon ember-paper
Ember-paper uses sass for its styles. To import them run:
$ npm install --save-dev broccoli-sass
and then create a file in app/styles/app.scss
and import the styles at the beginning of your file:
@import 'ember-paper';
All the components and styles are ready to use in your application templates. Navigate through the docs to understand how to use each component.
Ember Paper uses fonts from Google Fonts, so the URL to them has to be white listed. You can set this by adding to the Content Security Policy defined in config/environment.js
like so:
ENV.contentSecurityPolicy = {
'default-src': "'none'",
'script-src': "'self'",
'font-src': "'self' http://fonts.gstatic.com",
'connect-src': "'self'",
'img-src': "'self'",
'media-src': "'self'"
}
You can find out more information on the CSP addon page here.
This is a very ambitious project. Google's design specs are extensive, and not trivial to implement. ember-paper
is heavily based on Angular Material and Web Starter Kit (material-sprint branch). These seem to be the most useful resources at the moment. If you feel like porting or fixing an element or two, please drop a pull request or issue at GitHub!
I believe that with the help of everyone we can bring these amazing design spec to Ember in a modular and robust way. The Ember way. Help us on Github!
FAQs
The Ember approach to Material Design.
The npm package ember-paper receives a total of 835 weekly downloads. As such, ember-paper popularity was classified as not popular.
We found that ember-paper demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.