Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
react-playbuzz
Advanced tools
React component to render an embeded PlayBuzz game. How to embed a PlayBuzz game
To install and use this component:
yarn add react-playbuzz
or you can do it with npm
also:
npm install react-playbuzz
Just import the PlayBuzz
component from the react-playbuzz
package and use
it as a simple react component.
import React from 'react';
import ReactDOM from 'react-dom';
import PlayBuzz from 'react-playbuzz';
ReactDOM.render(
<PlayBuzz
url='http://www.playbuzz.com/peepersc10/who-is-your-favorite-super-hero'
load={true}
options={{
shares: true
}}
/>,
document.getElementById('root')
);
Name | Type | Description | Sample | Default |
---|---|---|---|---|
url | string | Game URL | "http://www.playbuzz.com/peepersc10/who-is-your-favorite-super-hero" | "" |
load | bool | Load playbuzz script async from cdn if its not already loaded | true | false |
height | int | Component height in pixels | 250 | null |
recommend | bool | Display recommendations for more items | true | false |
gameInfo | bool | Display item info (the thumbnail, name, description and editor) | true | false |
comments | bool | Use facebook comments | true | false |
shares | bool | Display share buttons (will redirect to your page) | true | false |
The load property add a script
tag asynchronously to the end of the body
tag: //cdn.playbuzz.com/widget/feed.js
. Only if it is not already loaded.
To run a demonstration, clone this project, install it locally and start the demo server:
yarn
npm start
or
npm i
npm start
You may see a message: Listening at http://localhost:3000
. Then go to your
browser and check it out: http://localhost:3000/demo
.
This projects uses jest
, enzime
and jsdom
for testing. To run the tests:
npm test
FAQs
React component to render an embeded PlayBuzz game
We found that react-playbuzz demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.