Security News
The Dark Side of Open Source
At Node Congress, Socket CEO Feross Aboukhadijeh uncovers the darker aspects of open source, where applications that rely heavily on third-party dependencies can be exploited in supply chain attacks.
ibiza-universe
Advanced tools
Readme
The '@aadiam/ibiza-universe' package encapsulates all of the Entra cross-extension common components that are utilized within the Ibiza framework's ReactViews. These common components are sectioned off into logical namespaces "under the hood" of the '@aadiam/ibiza-universe' package alias and are as follows:
'@aadiam/ibiza-datasource' Contains all components related to FluentUI DetailsList wrappers and datasources that should be utilized in conjunction with them. '@aadiam/ibiza-http' A set of common HTTP clients, cancellation token wrappers and OData components. Should be utilized for all extension API calls. '@aadiam/ibiza-misc' Miscelaenous components including but not limited to - Command Bar wrappers (Top level and inline), In Product Feedback hooks, External Links, View Context with telemetry and logging, and much more. '@aadiam/ibiza-overviews' All common components related to the latest overview pattern. Overview cards and sections, "Getting started" components, etc. '@aadiam/ibiza-permissions' A set of permissions common hooks, primarily the usePermissions which utilizes the latest estimateAccess API. '@aadiam/ibiza-search' All components related to searching and filtering - a filterable search component which encapsulates a search box and pill filters as well as common re-used pill filters.
FAQs
security holding package
The npm package ibiza-universe receives a total of 0 weekly downloads. As such, ibiza-universe popularity was classified as not popular.
We found that ibiza-universe demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
At Node Congress, Socket CEO Feross Aboukhadijeh uncovers the darker aspects of open source, where applications that rely heavily on third-party dependencies can be exploited in supply chain attacks.
Research
Security News
The Socket Research team found this npm package includes code for collecting sensitive developer information, including your operating system username, Git username, and Git email.
Security News
OpenJS is warning of social engineering takeovers targeting open source projects after receiving a credible attempt on the foundation.