Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
planet-maps
Advanced tools
Custom builds of OpenLayers 3.
Install planet-maps
as a dependency with npm
.
npm install planet-maps --save-dev
Use Browserify to require
OpenLayers 3.
// see below for a list of custom builds
var ol = require('planet-maps/dist/ol-base');
You'll also want to import the stylesheet:
/* Make sure to use the path to your node_modules */
@import url('./node_modules/planet-maps/dist/ol.css');
ol-base
Support for vector and raster sources. See config/ol-base.json
for details on what is included.
ol-debug
This is a debug build that should never be used in production.
Edit the config
files to include what you need exported and commit the changes. Then you'll want to bump the version number in package.json
, commit this change, and create a tag. This should be done with the npm version
command (choose one of patch
, minor
, or major
). E.g.
npm version minor
Next you'll want to push your commits (and the tag) and publish your changes to npmjs.org.
git push --tags origin master
npm publish
Before publishing, the prepublish
step will run make
. This will create builds in the dist
directory that are not tracked by git
but that are pushed to the npmjs.org repository for use by consuming packages.
Note the new version number in package.json
and use it in packages that depend on this one.
FAQs
Custom builds of OpenLayers 3
The npm package planet-maps receives a total of 12 weekly downloads. As such, planet-maps popularity was classified as not popular.
We found that planet-maps demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 4 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.