
Security News
minimatch Patches 3 High-Severity ReDoS Vulnerabilities
minimatch patched three high-severity ReDoS vulnerabilities that can stall the Node.js event loop, and Socket has released free certified patches.
This is the MapBox Javascript API, version 1.x. It's built as a Leaflet plugin. You can read about its launch.
Managed as Markdown in API.md, following the standards in DOCUMENTING.md
git clone https://github.com/mapbox/mapbox.js.git
npm install
make
This project uses browserify to combine
dependencies and installs a local copy when you run npm install.
make will build the project in dist/.
Test with phantomjs:
npm test
To test in a browser, run a local development server
and go to /test.
FAQs
Mapbox plugin for Leaflet
We found that mapbox.js demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 44 open source maintainers collaborating on the project.
Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Security News
minimatch patched three high-severity ReDoS vulnerabilities that can stall the Node.js event loop, and Socket has released free certified patches.

Research
/Security News
Socket uncovered 26 malicious npm packages tied to North Korea's Contagious Interview campaign, retrieving a live 9-module infostealer and RAT from the adversary's C2.

Research
An impersonated golang.org/x/crypto clone exfiltrates passwords, executes a remote shell stager, and delivers a Rekoobe backdoor on Linux.