
Security News
npm v12 Ships With Install Scripts Off by Default, Begins Deprecating 2FA-Bypass Tokens
npm v12 is generally available, turning install scripts off by default and beginning the deprecation of 2FA-bypass publishing tokens.
@betrue/react-elementor
Advanced tools
Nx plugin to generate Wordpress plugin that enrich Elementor with ReactJS widgets. All widget are wrapped in web component that will act as a proxy between elementor and react. all web components uses shadow dom to prevent css overload.
Nx plugin to generate Wordpress plugin that enrich Elementor with ReactJS widgets. All widget are wrapped in web component that will act as a proxy between elementor and react. all web components uses shadow dom to prevent css overload.
State between component is maintained using Redux.

| Plugin | Description |
|---|---|
@betrue/react-elementor | Generate Reactjs Elementor widgets in Wordpress plugin; |
Create a new nx workspace (if doesn't exist)
npx create-nx-workspace@latest my-workspace
Install @betrue/react-elementor
cd my-workspace
npm install -D @betrue/react-elementor
Create a new plugin
nx g @betrue/react-elementor:plugin my-project
this generates starting code base made up of two react components (input from and display title) wrapped into elementor widgets.
if you already have and Wordpress instance with elementor installed, you juste need to build the wordpress plugin
nx pkg my-project
Zip and upload using Wordpress plugin management the content of dist/element/my-project. that's all you can now try to use theses widgets into elementor :)
You can also serve the app to see the generated web component in action on http://localhost:4200
nx serve my-project
On build is important to pass the release version to make force resources update and reset cache
RELEASE_VERSION=xxxx plugin my-project
If you have already installed docker and docker-compose you can try the elementor plugin in wordpress
nx pkg my-project // to package the plugin into dist/ `
start docker-compose
docker-compose -f apps/my-project/src/docker-compose.yml up -d
http://localhost:8000install and enable elementor elementor plugin plugin.new page and choose edit with elementor.my-project-title and my-project-input widgets to your page.nx g @betrue/nx-reactjs-elementor:addWidget --name my-widget --plugin my-plugin --attributes attr1,attr2
| Option | Description |
|---|---|
name | (Required) name of the Reactjs elementor widget |
plugin | (Required) The name of the Wordpress plugin in which the widget will be generated. |
attributes | List of attribute that are customizable in elementor |
author | Name of who makes this plugin. |
tags | Add tags to the project (used for linting). |
widgetDescription | Widget description that appear in Wordpress plugin view. |
version | Wordpress plugin version. |
FAQs
Nx plugin to generate Wordpress plugin that enrich Elementor with ReactJS widgets. All widget are wrapped in web component that will act as a proxy between elementor and react. all web components uses shadow dom to prevent css overload.
The npm package @betrue/react-elementor receives a total of 44 weekly downloads. As such, @betrue/react-elementor popularity was classified as not popular.
We found that @betrue/react-elementor demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Security News
npm v12 is generally available, turning install scripts off by default and beginning the deprecation of 2FA-bypass publishing tokens.

Research
/Security News
Socket tracks the activity as Operation “Muck and Load”: a threat actor uses commit-farming workflows, public dead drops, and protected archives to stage Windows RAT and infostealer malware.

Security News
pnpm 11.10 hardens registry auth to block token redirection, tightens pack-app and deploy, and makes the Rust port (v12) installable.