Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
use-cardano
Advanced tools
A react context, hook, and set of components that makes interacting with the Cardano blockchain easy
use-cardano is a react context, hook, and set of components that makes interacting with the Cardano blockchain easy. It allows you to build web3 applications, connect wallets and performing tasks such as signing transactions and interacting with smart contracts.
Visit the documentation site for installation instructions, configuration options, and live examples.
This repository contains the source code for use-cardano, a react hook that makes interacting with the Cardano blockchain easy.
Feel free to contribute in any capacity, either by opening an issue, creating a pull request or by giving feedback.
Are you new to Open Source development, or the Cardano dApps eco system? I know it can be daunting, but do not be afraid to reach out in an issue. Any and all contributions are welcome.
We highly recommend pnpm over yarn and npm since it handles local project linking, as well as being very performant.
git clone git@github.com:use-cardano/use-cardano.git
npm i -g pnpm
cd example && pnpm i && cd ..
pnpm link ./example/node_modules/react ./example/node_modules/lucid-cardano
pnpm i
pnpm dev
When running the project locally, the examples site will be automatically served on http://localhost:4200
.
Some wallet providers (gerowallet) will not inject itself in the CIP-0030 web bridge if the page is not served over https. To get around this, the site is automatically also served over a reverse proxy using localtunnel. The proxied site will launch automatically in your default browser, and you will be informed that it's being proxied and prompted to continue.
There is an example app in the /example
folder. It is a simple Next.js app that serves both as a testbed and as a reference. Changes to both the use-cardano
package as well as the example app will be hot-reloaded during development.
FAQs
A react context, hook, and set of components that makes interacting with the Cardano blockchain easy
The npm package use-cardano receives a total of 8 weekly downloads. As such, use-cardano popularity was classified as not popular.
We found that use-cardano demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.