
Research
Malicious npm Packages Impersonate Flashbots SDKs, Targeting Ethereum Wallet Credentials
Four npm packages disguised as cryptographic tools steal developer credentials and send them to attacker-controlled Telegram infrastructure.
floatingnodes
Advanced tools
npm install floatingnodes --save
import React from 'react'
import FloatingNodes from 'floatingnodes'
class Component extends React.Component {
render() {
return <FloatingNodes
width={300}
height={300}
/>
}
}
This will produce something like this:
key | prop type / notes | example |
---|---|---|
width | number (required) | 300 |
width | number (required) | 300 |
nodeParams | object | see #nodeParams |
enableNodeDrop | bool | true , false |
nodeDropParams | object | see #nodeDropParams |
enableInteraction | bool | true , false |
interactiveNodeParams | object | see #nodeParams |
initialNodeCount | number | 25 |
movementUpdateTime | number(every X seconds each nodes has a 50% chance to update their movement direction) | 0.7 |
enableOutOfBound | bool (out of bound nodes are getting a new random position) | true , false |
pauseAnimation | bool | true , false |
key | prop type / notes | example |
---|---|---|
color | array (of numbers) | [0,255,0,0.9] |
speed | number (has no effect for interactiveNodeParams ) | 0.1 |
radius | number (fixed radius) | 6 |
radiusRange | object (random radius, has no effect if radius is defined, has no effect for interactiveNodeParams ) | {min: 2, max: 8} |
connectionSize | number | 0.3 |
connectionColor | array (of numbers) | [0,0,255] |
connectionThreshold | number | 120 |
connectionAlphaDivisor | number | 8 |
connectionStaticAlpha | bool/number (if not false connectionAlphaDivisor has no effect) | false , 0.7 |
key | prop type / notes | example |
---|---|---|
amount | number (nodes per drop) | 3 |
limit | number (removes nodes over limit, 0 means no limit) | 6 |
nodeDropParams | object | see #nodeParams |
FAQs
Animated & interactive floating nodes with connections (canvas)
The npm package floatingnodes receives a total of 1 weekly downloads. As such, floatingnodes popularity was classified as not popular.
We found that floatingnodes demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Four npm packages disguised as cryptographic tools steal developer credentials and send them to attacker-controlled Telegram infrastructure.
Security News
Ruby maintainers from Bundler and rbenv teams are building rv to bring Python uv's speed and unified tooling approach to Ruby development.
Security News
Following last week’s supply chain attack, Nx published findings on the GitHub Actions exploit and moved npm publishing to Trusted Publishers.