Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
This project aims to create a unified UI styled components for multiple development teams who work on the same web-based applications.
This project aims to create a unified UI styled components for multiple development teams who work on the same web-based applications. This repository contains the definition of all the basic widgets and reusable controllers.
@import "path_to_node_modules/sdc-ui/css/style.css";
<link rel="stylesheet" href="path_to_node_modules/sdc-ui/css/style.css">
import 'sdc-ui/css/style.css';
import Button from 'sdc-ui/lib/react/Button.js';
// inside component rendering...
render(){
return (
<Button>I am a Button</Button>
);
}
import {Button} from 'sdc-ui/lib/react';
// inside component rendering...
render(){
return (
<Button>I am a Button</Button>
);
}
import SDCUI from 'sdc-ui';
// inside component rendering...
render(){
return (
<SDCUI.React.Button>I am still a Button</SDCUI.React.Button>
);
}
The components in this library are displayed via storybook. Head to http://onap-sdc.github.io/sdc-ui to see the components that are in master
.
While developing, just run npm run storybook
in your terminal to launch a local storybook server where you can see your changes. For deploying storybook to your own fork repository, refer to the guides section below.
Deploying storybook to a fork's github pages
For bugs and issues, please use the issues page
Contribution can be made only by following these guide lines
React
& Angular
framework libraries. Hence, every change in the basic HTML files structure, must be followed by changes on the frameworks files accordingly (under src/react
and src/angular
).Bootstrap
, Material
, Foundation
... etc.).FAQs
This project aims to create a unified UI styled components for multiple development teams who work on the same web-based applications.
The npm package sdc-ui receives a total of 24 weekly downloads. As such, sdc-ui popularity was classified as not popular.
We found that sdc-ui demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.