Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
ZXing ("zebra crossing") is an open-source, multi-format 1D/2D barcode image processing library implemented in Java, with ports to other languages.
ZXing ("zebra crossing") is an open-source, multi-format 1D/2D barcode image processing library implemented in Java, with ports to other languages.
see: https://github.com/zxing/zxing
zxing-typescript is a TypeScript-port of the ZXing library.
This library wraps zxing-typescript into an Angular 2/4/5/X compatible component to scan QR-Codes the Angular-way.
To install this library, run:
$ npm install ngx-zxing --save
and then from your Angular AppModule
:
import { BrowserModule } from '@angular/platform-browser';
import { NgModule } from '@angular/core';
import { AppComponent } from './app.component';
// Import the library
import { NgxZxingModule } from 'ngx-zxing';
// Needed as well
import { FormsModule } from "@angular/forms";
@NgModule({
declarations: [
AppComponent
],
imports: [
BrowserModule,
FormsModule,
NgxZxingModule.forRoot()
],
providers: [],
bootstrap: [AppComponent]
})
export class AppModule { }
Once the library is imported, you can use it in your Angular application:
<ngx-zxing
[start]="camStarted"
[device]="selectedDevice"
[cssClass]="small-video"
(onCamsFound)="displayCameras($event)"
(onScan)="handleQrCodeResult($event)"
></ngx-zxing>
start
used to start and stop the scanning (defaults to false
)device
is the video-device used for scanning (use one of the devices emitted by onCamsFound
)cssClass
this CSS-class name will be appended to the video-element e.g. for resizing it (see below)onCamsFound
will emit an array of video-devices after view was initializedonScan
will emit the result as string, after a valid QR-Code was scannedIn your CSS, define an extra class and pass it to the component with the cssClass
-parameter.
CSS might look like this:
.small-video {
max-height: 70vh;
width: 100vw;
object-fit: contain;
}
MIT © David Werth
FAQs
[![NPM version](https://img.shields.io/npm/v/ngx-zxing.svg?&label=npm)](https://www.npmjs.com/package/ngx-zxing) [![Downloads](https://img.shields.io/npm/dm/ngx-zxing.svg)](https://npmjs.org/package/ngx-zxing) [![Dependency Status](https://david-dm.org
The npm package ngx-zxing receives a total of 2 weekly downloads. As such, ngx-zxing popularity was classified as not popular.
We found that ngx-zxing demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.