
Research
Two Malicious Rust Crates Impersonate Popular Logger to Steal Wallet Keys
Socket uncovers malicious Rust crates impersonating fast_log to steal Solana and Ethereum wallet keys from source code.
p2-theme-core
Advanced tools
This is one of two pieces of our themes:
pattern-lab-starter
- a starter set of files for Drupal theming that includes a Twig powered Pattern Lab and beginning Sass & other front end tools. Uses p2-theme-core
for automation.p2-theme-core
(this repo) - the core gulp tasks that handles most of the theme's automation.Ideally, the changes to how a theme install works would be done by passing in a different config.js
.
More docs in docs/
folder – these docs are hosted in Read the Docs!
All is easily configurable by changing values in your config.js
file in your project. These values are merged into the config.default.js
file - look there for the available options and defaults.
It's best to look at how pattern-lab-starter
implements this, but it's basically this:
npm install p2-theme-core --save
cp node_modules/p2-theme-core/config.default.js gulpconfig.js
Make a gulpfile.js
with:
'use strict';
var gulp = require('gulp');
var config = require('./gulpconfig.js');
var tasks = {
'compile': [],
'watch': [],
'validate': [],
'clean': [],
'default': []
};
require('p2-theme-core')(gulp, config, tasks);
gulp.task('clean', gulp.parallel(tasks.clean));
gulp.task('compile', gulp.series(
'clean',
gulp.parallel(tasks.compile)
));
gulp.task('validate', gulp.parallel(tasks.validate));
gulp.task('watch', gulp.parallel(tasks.watch));
tasks.default.push('watch');
gulp.task('default', gulp.series(
'compile',
gulp.parallel(tasks.default)
));
FAQs
Phase2 theme tools for Pattern Lab Starter/Particle v9
We found that p2-theme-core demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 6 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Socket uncovers malicious Rust crates impersonating fast_log to steal Solana and Ethereum wallet keys from source code.
Research
A malicious package uses a QR code as steganography in an innovative technique.
Research
/Security News
Socket identified 80 fake candidates targeting engineering roles, including suspected North Korean operators, exposing the new reality of hiring as a security function.