Security News
Research
Data Theft Repackaged: A Case Study in Malicious Wrapper Packages on npm
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
react-layout-views
Advanced tools
Easy layouts for React & React Native
Creating UI layouts should be simple and declarative.
The aim of this library is to provide a simple and intuative API for composing layouts by abstracting away certain flex concepts like flex-direction and main/cross axis alignment and replacing these with more intuitive terms like horizontal
, bottom
, right
, and center
.
// This example produces a horizontal layout where
// each section is spaced by 20px and the first section is
// pushing its siblings to the right.
<Layout horizontal spacing='20px'>
<Section grow>Content 1</Section>
<Section>Content 2</Section>
<Section>Content 3</Section>
</Layout>
// This example shows the previous example with
// the addition of a nested layout contained
// by the last section in the parent layout.
<Layout horizontal spacing='20px'>
<Section grow>Content 1</Section>
<Section>Content 2</Section>
<Section>
<Layout spacing='10px'>
<Section>Content 1</Section>
<Section>Content 2</Section>
<Section>Content 3</Section>
</Layout>
</Section>
</Layout>
// This example shows how styles may be applied
// directly to `Layout` and `Section`.
<Layout horizontal spacing='20px' style={{background: 'red'}}> // does not produce inline styles
<Section grow>Content 1</Section>
<Section>Content 2</Section>
<Section style={{padding: '1em'}}>Content 3</Section> // does not produce inline styles
</Layout>
$ npm install react-layout-views
import { Layout, Section } from 'react-layout-views' // web
// OR
import { Layout, Section } from 'react-layout-views/native' // native
...
<Layout />
The Layout
component wraps multiple Section
components.
grow?: boolean | number
how should the Layout fill its containerspacing?: number (native) / string (web e.g. 20px, 2%, etc.)
spacing between child <Section />
shorizontal?: boolean
are child sections arranged horizontally or verticallystyle?: object
JavaScript style object (on the web this is passed to styled-components and will not produce inline-styles). All platform-specific styling is supported.Alignment props arrange child Sections
accordingly and can be combined (e.g. <Layout bottom right>...</Layout>
).
center?: boolean
centerVertical?: boolean
centerHorizontal?: boolean
top?: boolean
right?: boolean
bottom?: boolean
left?: boolean
<Section />
The Section
component subdivides a Layout
and contains other components or another Layout
.
grow?: boolean | number
how should the Section
fill its containerstyle?: object
JavaScript style object (on the web this is passed to styled-components and will not produce inline-styles). All platform-specific styling is supported.Alignment props arrange child content accordingly and can be combined (e.g. <Section center right>...</Section>
).
center?: boolean
centerVertical?: boolean
centerHorizontal?: boolean
top?: boolean
right?: boolean
bottom?: boolean
left?: boolean
npm run setup
install project and test app depsnpm run dist
or npm run dist:watch
- buildnpm run apps:run
- start storybook for web and nativenpm run apps:test
- run visual regression tests with lokiFAQs
Easy layouts for React & React Native
The npm package react-layout-views receives a total of 1 weekly downloads. As such, react-layout-views popularity was classified as not popular.
We found that react-layout-views demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Research
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
Research
Security News
Attackers used a malicious npm package typosquatting a popular ESLint plugin to steal sensitive data, execute commands, and exploit developer systems.
Security News
The Ultralytics' PyPI Package was compromised four times in one weekend through GitHub Actions cache poisoning and failure to rotate previously compromised API tokens.