Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
expo-victory-native
Advanced tools
Install victory-native:
$ npm install victory-native --save
Install react-native-svg:
$ npm install react-native-svg --save
Note: victory-native
requires the following peer dependencies:
react-native-svg@^5.0.0
react
react-native
Note: react-native-svg
has strict version requirements for both react
and react-native
. Please match versions to those required by react-native-svg
. See the up-to-date requirements on the react-native-svg Readme.
We encourage you to use the latest version of react-native-svg
possible for your project, as victory-native
issues are frequently solved by react-native-svg
bugfixes.
Link react-native-svg:
$ react-native link react-native-svg
Import charts from victory-native
. For example,
import React, { Component } from "react";
import { VictoryBar } from "victory-native";
class App extends Component {
render() {
return (
<VictoryBar />
);
}
}
export default App;
Clone victory-native-demo and follow the instructions there.
If you'd like to contribute to victory-native
, you can use the local demo app to test your changes on the iOS simulator. (But if you're just getting started with victory-native
and want to see a demo, we recommend using victory-native-demo, as it supports Android and is simpler to set up.)
# Install
$ npm install -g react-native-cli # if you haven't already
$ git clone https://github.com/FormidableLabs/victory-native
$ cd victory-native
$ npm install
# Start the react-native packager in a terminal that will remain running
$ npm start
# Run the demo from a new terminal window
$ npm run demo:ios
Changes to lib
will be reflected in the demo app.
Do not run npm install
in the demo/
directory, or the packager packager will crash due to
"duplicate @providesModule declarations" found in node_modules/
and demo/node_modules
.
This project is in a pre-release state. We're hard at work fixing bugs and improving the API. Be prepared for breaking changes!
SEMVER Minor version bumps should be considered breaking changes until we hit v1.0.0. Patches can be considered safe.
Please review our Code of Conduct before contributing.
FAQs
Shared libraries and components for Victory
The npm package expo-victory-native receives a total of 1 weekly downloads. As such, expo-victory-native popularity was classified as not popular.
We found that expo-victory-native demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.