Security News
Research
Data Theft Repackaged: A Case Study in Malicious Wrapper Packages on npm
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
fractal-component
Advanced tools
`fractal-component` helps to encapsulate state store access, actions (messages, events) processing and side-effect management into decoupled container components.
fractal-component
helps to encapsulate state store access, actions (messages, events) processing and side-effect management into decoupled container components by introducing the following features to react / redux ecosystem:
Multicast
ActionsHot Plug
Redux Reducer & Auto mount / unmountHot Plug
Saga & Auto mount / unmountWith fractal-component
, you can create fractal reusable Container Components and construct scalable fractal architecture application while still enjoy the convenience of Redux dev tool & predictable single global state store.
To try it out, take a look at the example app and find out how fractal-component
solves the classical Scalable Architecture Problem.
To run the example App:
git clone https://github.com/t83714/fractal-component.git
yarn install
or
npm install
At project root directory:
yarn start
or
npm start
yarn add fractal-component
or
npm install --save fractal-component
Alternatively, you may use the provided UMD builds directly in the
FAQs
`fractal-component` is a javascript library that can help you to encapsulate decoupled resuable UI component easily
The npm package fractal-component receives a total of 4 weekly downloads. As such, fractal-component popularity was classified as not popular.
We found that fractal-component demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Research
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
Research
Security News
Attackers used a malicious npm package typosquatting a popular ESLint plugin to steal sensitive data, execute commands, and exploit developer systems.
Security News
The Ultralytics' PyPI Package was compromised four times in one weekend through GitHub Actions cache poisoning and failure to rotate previously compromised API tokens.