Security News
PyPI Introduces Digital Attestations to Strengthen Python Package Security
PyPI now supports digital attestations, enhancing security and trust by allowing package maintainers to verify the authenticity of Python packages.
vanilla-framework
Advanced tools
Vanilla Framework is an extensible CSS framework, built using Sass and is designed to be used either directly or by using themes to extend or supplement its patterns.
Documentation | Join the mailing list
You can link to the latest build to add directly into your markup like so, by replacing the x values with the version number you wish to link.
<link rel="stylesheet" href="https://assets.ubuntu.com/v1/vanilla-framework-version-x.x.x.min.css" />
To get set up with Sass, add the sass
and vanilla-framework
packages to your project dependencies:
yarn add sass vanilla-framework
In the script that builds the CSS in your package.json
, you should include the path to node_modules
when looking for @imports
. In this example, we have called the build script "build-css"
:
"build-css": "sass -w --load-path=node_modules src:dist --style=compressed"
Make a folder src/
, create a file inside called style.scss
and import Vanilla:
// Import the theme
@import 'vanilla-framework';
@include vanilla;
// Optionally override some settings
$color-brand: #ffffff;
// Add theme if applicable
If you don't want the whole framework, you can just @include
specific parts - e.g. @include vf-b-forms
.
Now run yarn build-css
, which will convert any Sass files in the src/
folder to CSS in the dist/
folder.
To watch for changes in your Sass files, add the following script to your package.json
"watch-css": "yarn build-css && sass --load-path=node_modules -w src:dist --style=compressed"
If you're looking to contribute to the Vanilla project itself, start here.
Keep up to date with all new developments and upcoming changes with Vanilla.
Code licensed LGPLv3 by Canonical Ltd
With ♥ from Canonical
FAQs
A simple, extendable CSS framework.
The npm package vanilla-framework receives a total of 6,801 weekly downloads. As such, vanilla-framework popularity was classified as popular.
We found that vanilla-framework demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
PyPI now supports digital attestations, enhancing security and trust by allowing package maintainers to verify the authenticity of Python packages.
Security News
GitHub removed 27 malicious pull requests attempting to inject harmful code across multiple open source repositories, in another round of low-effort attacks.
Security News
RubyGems.org has added a new "maintainer" role that allows for publishing new versions of gems. This new permission type is aimed at improving security for gem owners and the service overall.