Security News
The Hidden Blast Radius of the Axios Compromise
The Axios compromise shows how time-dependent dependency resolution makes exposure harder to detect and contain.
By Ahmad Nassri - Apr 01, 2026
New Research: Supply Chain Attack on Axios Pulls Malicious Dependency from npm.Details → →
FSXA-UI
About the FSXA
The FirstSpirit Experience Accelerator (FSXA) is the hybrid solution of a digital experience platform, combining a headless approach with enterprise capabilities. If you are interested in the FSXA check this Overview. You can order a demo online.
Project setup
FSXA-UI is really easy to get started with. Make sure to follow the guide below to get a better understanding about some of the decisions behind FSXA-UI and how to use it to kick-off your next project.
You can install FSXA-UI via Yarn or NPM.
# with npm
npm install fsxa-ui --save
# with yarn
yarn add fsxa-ui
Please make sure that the main CSS file is imported from the FSXA UI package.
// directly importing the css into your main component
import "fsxa-ui/dist/fsxa-ui.css";
/* using node-style package resolution in a CSS file */
@import "fsxa-ui/dist/fsxa-ui.css";
<!-- using plain html -->
<link
href="path/to/node_modules/fsxa-ui/dist/fsxa-ui.css"
rel="preload"
as="style"
/>
Usage
Now you can use the components in your project. In the navigation you will find all available components with a detailed description of all properties and usage examples.
Here you can see how easy the Button component can be used.
import { Button } from "fsxa-ui";
<Button variant="animated" handleClick={handleClick}>
This is my Button
</Button>
Please make sure that your component is registered correctly.
Compiles and hot-reloads for development
npm run serve
Compiles and minifies for production
npm run build
Run your unit tests
npm run test:unit
Lints and fixes files
npm run lint
Customize configuration
Existing CSS-Variables:
- --fsxa-text-highlight-color
Legal Notices
FSXA-UI is a product of Crownpeak Technology GmbH, Dortmund, Germany. The FSXA-UI is subject to the Apache-2.0 license.
Disclaimer
This document is provided for information purposes only. Crownpeak Technology may change the contents hereof without notice. This document is not warranted to be error-free, nor subject to any other warranties or conditions, whether expressed orally or implied in law, including implied warranties and conditions of merchantability or fitness for a particular purpose. Crownpeak Technology specifically disclaims any liability with respect to this document and no contractual obligations are formed either directly or indirectly by this document. The technologies, functionality, services, and processes described herein are subject to change without notice.
FAQs
### About the FSXA
We found that fsxa-ui demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 4 open source maintainers collaborating on the project.
Package last updated on 21 Dec 2022
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
Supply Chain Attack on Axios Pulls Malicious Dependency from npm
A supply chain attack on Axios introduced a malicious dependency, plain-crypto-js@4.2.1, published minutes earlier and absent from the project’s GitHub releases.
By Socket Research Team - Mar 31, 2026
Research
TeamPCP Compromises Telnyx Python SDK to Deliver Credential-Stealing Malware
Malicious versions of the Telnyx Python SDK on PyPI delivered credential-stealing malware via a multi-stage supply chain attack.
By Socket Research Team - Mar 27, 2026