Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
grunt-wigitor
Advanced tools
A demo builder for 'widgets' - a specific UI module setup
The folder structure of a Wigitor 'widget' should be:
widgets
wgt
samplewgt
js
folder should contain a 'main.js'scss
folder should contain a _module.scss
and follow SMACSS guidelines for _state.scss
and _layout.scss
. _vars.scss
can also be used.options.json
(see explanation below)README.md
(see explanation below)markup.hbs
or markup.ejs
, depending on which template you're using. This is the default template for the widget.another-template.hbs
. You may add more partials/includes as well, but they will be secondary to markup.hbs
. (.ejs
can also be used)properties/example1.json
, which should contain a config object for your widget. Multiple json files allowed and doesn't have to be example1.json
.There's also an options.json
file in each widget, which contains options for the widget:
configName
{string}: This is the name of the config object used when populating the template. It must be unique and should roughly folow the name of the widget with the suffix "Cnf". You can abbreviate if your have a long widget name.
templateType
{string}: Either "ejs" or "hbs", depending which template you're using.
Use these custom tags to determine where properties button and Github info goes.
<!--START_WIGITOR_ADDITIONS-->
<!--END_WIGITOR_ADDITIONS-->
This only applies if options.json -> modifyReadMes
is set to true
This should be the folder of the widget you're rendering.
This should be the output folder.
grunt-wigitor
plugin directory. Defaults to node_modules/wigitor
.widgets
. Defaults to resources/widgets/
.modifyReadMes:false
will also stop this.dest
folder before running. Defaults to false
. Careful with this.true
to insert a bootstrap popover into your widget's README.md
. Also inserts Github details if gitHubMsg
set.false
, will render with page template, otherwise will render just with the widget markuptrue
will remove any <script>
tags from the markup when rendering.true
will search through the widget's properties
folder and make available all json files as configs.samplewgt_my-other-file
. Objects must have 2 properties name
{string} and path
{string}.wgtvwr-lightbg
or Bootstrap grid styles. Should be a single string, separated by spaces.Releases
FAQs
A demo builder for 'widgets' - a specific UI module setup
The npm package grunt-wigitor receives a total of 0 weekly downloads. As such, grunt-wigitor popularity was classified as not popular.
We found that grunt-wigitor demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.