Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
notification-renderer
Advanced tools
A flexible notification library supporting the delivery to external services, rendering in various environments, and user configuration by category.
notifications-rails has been built with modularity in mind. It currently consists of four components each of which bringing one essential functionality to the integration of notifications in your Rails app.
notification-handler: Create and modify your notifications through a simple API.
notification-renderer: Render your notifications in various contexts.
notification-pusher: Deliver your notifications to various services, including Email and OneSignal.
notification-settings: Integrates with your authentication solution to craft a personalized user notification platform.
You may just use the components you actually need, or instead use this gem to bundle everything for a complete notification solution.
You can add notifications-rails to your Gemfile
with:
gem 'notifications-rails'
And then run:
$ bundle install
Or install it yourself as:
$ gem install notifications-rails
If you always want to be up to date fetch the latest from GitHub in your Gemfile
:
gem 'notifications-rails', github: 'jonhue/notifications-rails'
Details on usage are provided in the documentation of the specific modules.
To start development you first have to fork this repository and locally clone your fork.
Install the projects dependencies by running:
$ bundle install
Tests are written with RSpec. Integration tests are located in /spec
, unit tests can be found in <module>/spec
.
To run all tests:
$ ./rspec
To run RuboCop:
$ bundle exec rubocop
You can find all commands run by the CI workflow in .github/workflows/ci.yml
.
We warmly welcome everyone who is intersted in contributing. Please reference our contributing guidelines and our Code of Conduct.
Here you can find details on all past releases. Unreleased breaking changes that are on the current master can be found here.
notifications-rails follows Semantic Versioning 2.0 as defined at http://semver.org. Reference our security policy.
CHANGELOG.md
.VERSION
.CHANGELOG.md
.master
.master
since the last release.FAQs
Unknown package
We found that notification-renderer demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.