Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Riot brings custom components to all modern browsers. It is designed to offer you everything you wished the native web components API provided.
<timer>
<p>Seconds Elapsed: { state.time }</p>
<script>
export default {
tick() {
this.update({ time: ++this.state.time })
},
onBeforeMount(props) {
// create the component initial state
this.state = {
time: props.start,
}
this.timer = setInterval(this.tick, 1000)
},
onUnmounted() {
clearInterval(this.timer)
},
}
</script>
</timer>
// mount the timer with its initial props
riot.mount('timer', { start: 0 })
Custom components let you build complex views with HTML.
<timetable>
<timer start="0"></timer>
<timer start="10"></timer>
<timer start="20"></timer>
</timetable>
HTML syntax is the de facto language on the web and it's designed for building user interfaces. The syntax is explicit, nesting is inherent to the language and attributes offer a clean way to provide options for custom tags.
data-
attributes or fancy custom attributes.The Riot.js ecosystem is completely modular, it's designed to let you pick only the stuff you really need:
If you are reading this it's already a good sign and I am thankful for it! I try my best working as much as I can on riot but your help is always appreciated.
If you want to contribute to riot helping the project maintenance please check first the list of open issues to understand whether there is a task where you could help.
Riot is mainly developed on UNIX systems so you will be able to run all the commands necessary to build and test the library using our Makefile. If you are on a Microsoft machine it could be harder to set up your development environment properly.
Following the steps below you should be able to properly submit your patch to the project
git clone git@github.com:riot/riot.git && cd riot
git checkout -b feature/my-awesome-patch
npm i
# To build and test riot
$ make riot
# To build without testing
$ make raw
main
branch making sure you have read our pull request templateRiot is actively maintained with :heart: by:
Gianluca Guarini |
Many thanks to all smart people from all over the world who helped improving it.
Support us with a monthly donation and help us continue our activities. Become a backer
Become a sponsor to get your logo on our README. Become a sponsor
Special thanks to Browserstack for their support
FAQs
Simple and elegant component-based UI library
The npm package riot receives a total of 2,899 weekly downloads. As such, riot popularity was classified as popular.
We found that riot demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.