Security News
GitHub Removes Malicious Pull Requests Targeting Open Source Repositories
GitHub removed 27 malicious pull requests attempting to inject harmful code across multiple open source repositories, in another round of low-effort attacks.
@anyfin/ui
Advanced tools
UI Components is a collection of React components for building web interfaces.
@anyfin/ui is available as an npm package and can be installed on any React web project.
yarn add @anyfin/ui
yarn storybook
Open http://localhost:6006 with your browser to see Storybook and the list of component stories.
You can start modifying the components, and they will update automatically in Storybook to reflect the changes. If you change the functionality of any component (e.g., removing or adding props) don't forget to update the component's stories and documentation to reflect those changes.
yarn dev
and link this package to web or mypages.If you are working on the web or mypages project, sometimes you want to modify some @anyfin/ui components and see them update on that project as well. You can achieve this by running the following commands. in the ui-components repository, run: yarn link
.
Then, in the web/mypages directory run yarn link @anyfin/ui
. Now the component set is linked to code in the web/mypages directory which means they should update.
Don't forget to run dev mode (yarn dev
) in this repository and the one you have linked this one against (e.g. web or mypages).
@anyfin/ui is available as an npm package. You will need access to the npm organization in order to publish new versions of this package.
Make sure to include the version bump in package.json in your PR, if your changes are merged in master go to "Releases" -> Draft a new release. Here, you can create the "release" that will be published to npm. By default this should be the latest master (with your changes included).
To publish a new version, run yarn version
to create new tags and yarn publish
to publish these to npm. This package follows semver versioning.
A merge in master
will automatically update the only storybook.
FAQs
Anyfin UI component library
The npm package @anyfin/ui receives a total of 8 weekly downloads. As such, @anyfin/ui popularity was classified as not popular.
We found that @anyfin/ui demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 6 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
GitHub removed 27 malicious pull requests attempting to inject harmful code across multiple open source repositories, in another round of low-effort attacks.
Security News
RubyGems.org has added a new "maintainer" role that allows for publishing new versions of gems. This new permission type is aimed at improving security for gem owners and the service overall.
Security News
Node.js will be enforcing stricter semver-major PR policies a month before major releases to enhance stability and ensure reliable release candidates.