![Malicious npm Package Typosquats react-login-page to Deploy Keylogger](https://cdn.sanity.io/images/cgdhsj6q/production/007b21d9cf9e03ae0bb3f577d1bd59b9d715645a-1024x1024.webp?w=400&fit=max&auto=format)
Research
Security News
Malicious npm Package Typosquats react-login-page to Deploy Keylogger
Socket researchers unpack a typosquatting package with malicious code that logs keystrokes and exfiltrates sensitive data to a remote server.
popupz
Advanced tools
Readme
Popupz is a simple and customizable popup notification library for React applications. It provides an easy way to display success, error, warning, info, or default messages to users with customizable themes and message content.
To install Popupz, you can use npm:
npm install popupz
Integration in main.jsx
Wrap your App.jsx component with the PopzProvider
to enable the pop-up notifications. Your main.jsx
should be structured as follows:
import React from 'react'
import ReactDOM from 'react-dom/client'
import App from './App.jsx'
import './index.css'
import { PopzProvider } from 'popupz';
ReactDOM.createRoot(document.getElementById('root')).render(
<React.StrictMode>
<PopzProvider>
<App />
</PopzProvider>
</React.StrictMode>,
)
Displaying Popup Notifications
To display popup notifications, first import the usePopz hook in your component.
import { usePopz } from 'popupz/dist';
Now use the popz
function provided by the usePopz
hook. The function accepts four parameters: theme
, type
, message
, and progressBar
.
//syntax- popz(theme, type, message, progress-bar);
theme
: Specify the theme of the popup. It can be either 'dark'
or 'light'
.type
: Specify the type of message. Available options are 'success'
, 'error'
, 'warning'
, 'info'
, or 'default'
.message
: Provide a short informative message to display in the popup.progressBar
: Specify whether to display a progress bar along with the popup. Use 'true'
to show the progress bar and 'false'
to hide it.Example usage:
import React from 'react';
import { usePopz } from 'popupz/dist';
const MyComponent = () => {
const { popz } = usePopz();
const handleSubmit = () => {
// your logic
popz('dark', 'success', 'Logged in Successfully!', 'true');
};
return (
<div>
<h1>My Component</h1>
<button onClick={handleSubmit} >
Submit
</button>
</div>
);
};
export default MyComponent;
In this example, clicking the submit button triggers the display of a success popup notification with a dark theme, displaying the message "Logged in Successfully!" and including a progress bar.
FAQs
Unknown package
The npm package popupz receives a total of 24 weekly downloads. As such, popupz popularity was classified as not popular.
We found that popupz demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers unpack a typosquatting package with malicious code that logs keystrokes and exfiltrates sensitive data to a remote server.
Security News
The JavaScript community has launched the e18e initiative to improve ecosystem performance by cleaning up dependency trees, speeding up critical parts of the ecosystem, and documenting lighter alternatives to established tools.
Product
Socket now supports four distinct alert actions instead of the previous two, and alert triaging allows users to override the actions taken for all individual alerts.