Research
Security News
Threat Actor Exposes Playbook for Exploiting npm to Build Blockchain-Powered Botnets
A threat actor's playbook for exploiting the npm ecosystem was exposed on the dark web, detailing how to build a blockchain-powered botnet.
Automatic forms.
Formatic is currently early alpha and still in heavy development. Everything is subject to change! You should probably just look away till this warning goes away!
git clone git@github.com:zapier/formatic.git
cd formatic
npm install
npm run live
Point your browser to localhost:3000/index.html
. Hack away on the code, the
styles or the HTML in the demo directory, and the browser will automatically
reload with your changes.
Note: Don't mess with the files in the live
directory. All those are copied
from elsewhere.
npm run build
This will build two files in the build directory: formatic-min.js (minified) and formatic-dev.js (not minified and includes source maps for development).
Formatic is a configurable, pluggable forms library for React. Pass in JSON fields that define your form, along with a value to be edited, and Formatic gives you a form to edit your value.
If you're happy with the default configuration, you can use it like this:
// Get the formatic class.
var Formatic = require('formatic');
// Create an element factory.
var Form = React.createFactory(Formatic);
// Create some fields.
var fields = [
{
type: 'string',
isSingleLine: true,
key: 'firstName',
label: 'First Name'
},
{
type: 'str',
isSingleLine: true,
key: 'lastName',
label: 'Last Name'
}
];
// Render the form.
React.render(Form({
fields: fields,
onChange: function (newValue) {
console.log(newValue);
}
}), document.body);
This creates a simple form like this (assuming you're using formatic.css):
The above assumes you're using a CommonJS build tool like browserify or webpack. If you use the standalone build, you can just the global `Formatic'.
The documentation is a work in progress, but there's already a lot of useful info there.
FAQs
Automatic, pluggable form generation
The npm package formatic receives a total of 190 weekly downloads. As such, formatic popularity was classified as not popular.
We found that formatic demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 10 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
A threat actor's playbook for exploiting the npm ecosystem was exposed on the dark web, detailing how to build a blockchain-powered botnet.
Security News
NVD’s backlog surpasses 20,000 CVEs as analysis slows and NIST announces new system updates to address ongoing delays.
Security News
Research
A malicious npm package disguised as a WhatsApp client is exploiting authentication flows with a remote kill switch to exfiltrate data and destroy files.