Security News
JavaScript Leaders Demand Oracle Release the JavaScript Trademark
In an open letter, JavaScript community leaders urge Oracle to give up the JavaScript trademark, arguing that it has been effectively abandoned through nonuse.
@finn-no/polyfills
Advanced tools
Global polyfills for webapps on FINN.
The purpose of the polyfill package is to offer a predictable JavaScript environment while developing webapps on FINN.
The following features and polyfills are bundled in polyfills.js
.
Date
API.The following polyfills are bundled in polyfills-ie9-extras.js
.
Include the scripts via CDN prior to loading your own script(s). The async
attribute must not be used as the order of scripts will not be guaranteed. The ie9 extras must be loaded before the main polyfill package for fetch
to work properly in IE9.
<!--[if IE 9]>
<script src="https://static.finncdn.no/_c/polyfill/v1.2.3/polyfills-ie9-extras.js"></script>
<![endif]-->
<script src="https://static.finncdn.no/_c/polyfill/v1.2.3/polyfills.js"></script>
Alternatively, to bundle the script with your app (e.g with Webpack, Browserify or Rollup).
Install the package
npm install --save-dev @finn-no/polyfills
Import in your app (prior to using any of the polyfilled APIs).
import '@finn-no/polyfills';
The above will include the ie9-extras.
Ideally, we'd like to include the whole set of polyfills for ES6 and ES7. However, each polyfill contributes to increased load and execution time, which is unfortunate since we cannot async the polyfill bundle and the main scripts on the page will have to wait for the polyfills to run. Therefore, only the polyfills we believe are most frequently used are included. If you're missing a polyfill, perhaps it should be included in this package. Please tell us about it on Slack#finn-framsie.
Pushing a release-tag triggers a cdn-upload of the files.
npm version
git push origin master --follow-tags
npm publish
FAQs
Global polyfills for FINN webapps
We found that @finn-no/polyfills demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 10 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
In an open letter, JavaScript community leaders urge Oracle to give up the JavaScript trademark, arguing that it has been effectively abandoned through nonuse.
Security News
The initial version of the Socket Python SDK is now on PyPI, enabling developers to more easily interact with the Socket REST API in Python projects.
Security News
Floating dependency ranges in npm can introduce instability and security risks into your project by allowing unverified or incompatible versions to be installed automatically, leading to unpredictable behavior and potential conflicts.