Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
joy-treasury
Advanced tools
Joy Treasury is a collection of blocks that are ready-to-use for Joy UI projects.
The blocks are made to live from design inspiration resources such as Dribbble and Pinterest, etc.
There are 2 way to use the blocks in your project.
Card/News/Maldives
)npx joy-treasury@latest clone card-news-maldives
src/joy-treasury
folder (in your local project)Note: to clone multiple blocks, just add more names to the command with a space in between, e.g.
npx joy-treasury clone [blocks...]
Usage: npx joy-treasury@latest [options] [command]
Options:
-v, --version output the current version
-h, --help display help for command
Commands:
init
clone [options] <sources...> clone components/styles to your config directory
help [command] display help for command
init
create a joy-treasury.config.js
file that will be used when running clone
.
npx joy-treasury@latest init
Note that config file will be overridden by cli options (if specified)
clone
Usage: npx joy-treasury@latest clone [options] <sources...>
clone components/styles to your config directory
Options:
-d, --dir [directory] destination directory
-t, --template [template] template of the files, typescript (default) | javascript
-b, --branch [branch] target branch on github
--storybook storybook file(s) will be included.
--test test file(s) will be included.
-h, --help display help for command
clone multiple modules
npx joy-treasury@latest clone card-news-maldives card-travel-spa
FAQs
A CLI to clone Joy UI blocks into your project.
The npm package joy-treasury receives a total of 0 weekly downloads. As such, joy-treasury popularity was classified as not popular.
We found that joy-treasury demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.