Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Lightweight and elegant icons designed by Taiwan's tech team, perfect for front-end developers and UI designers.
JIIcons is a collection of icons designed by Taiwan's tech community, aimed at front-end developers and UI designers. The icons are lightweight, elegant and easy to use, and can be used in a variety of projects.
To use JIIcons, simply install the package from CDN and include it into your web page:
<link rel="stylesheet" href="https://cdn.jsdelivr.net/npm/jiicons@0.1.1/jiicons.css">
Once installed, you can use the icons in your project like this:
<i class="ji-icon ji-select-text"></i>
The JIIcons font is licensed under SIL OFL 1.1, which allows the font to be used, studied, modified, and redistributed freely as long as it is not sold by itself. The font can be bundled, embedded, redistributed, and sold with any software provided that any reserved names are not used by derivative works. The fonts and derivatives cannot be released under any other type of license.
The JIIcons CSS, LESS, and SASS files are licensed under the MIT License, which allows the software to be used, copied, modified, merged, published, distributed, sublicensed, and/or sold with any software, subject to certain conditions.
For more information, please see the LICENSE file.
If you'd like to contribute to JIIcons, please read the contributing guidelines before submitting a pull request.
If you have any questions or issues, please open an issue on GitHub.
JIIcons was built with the help of the following open source projects:
FAQs
Lightweight and elegant icons designed by Taiwan's tech team, perfect for front-end developers and UI designers.
We found that jiicons demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.