Security News
pnpm 10.0.0 Blocks Lifecycle Scripts by Default
pnpm 10 blocks lifecycle scripts by default to improve security, addressing supply chain attack risks but sparking debate over compatibility and workflow changes.
@fredyc/draft-js-typeahead
Advanced tools
Typeaheads for Draft.js inspired by Facebook.com.
Check out an example of mentions in draft using draft-js-typeahead here. 🎉
This package provides a higher-order component that wraps draft's Editor
component and augments it with typeahead superpowers. One popular use for draft-js-typeahead is to add mentions to your editors.
draft-js-typeahead helps in three ways:
$ npm install --save draft-js-typeahead
Examples are available under the examples/
directory.
First we'll need to import TypeaheadEditor
:
import { TypeaheadEditor } from 'draft-js-typeahead';
TypeaheadEditor
is a react component that wraps draft's Editor
.
It supports all of the same properties as the latter, as well as a few others:
onTypeaheadChange => (typeaheadState)
:
This method is called when the typeahead's visibility, position, or text changes. typeaheadState
is an object with left
, top
, text
, and selectedIndex
properties. A typical callback sets typeaheadState
on its own state and uses it to render an overlay in its component's render
method. This method is also called when the typeahead is hidden by passing null
to typeaheadState
.
handleTypeaheadReturn => (text, selectedIndex, selection)
:
This method is called when an item in the typeahead is selected (by hitting return). A typical callback autocompletes the editor with the selected item and tags it with a draft entity.
Note: By default draft-js-typeahead does not filter items in the typeahead based on the entered text, see the mentions example for one approach to filtering.
MIT © Justin Vaillancourt
FAQs
Typeaheads for Draft.js inspired by Facebook.com
The npm package @fredyc/draft-js-typeahead receives a total of 0 weekly downloads. As such, @fredyc/draft-js-typeahead popularity was classified as not popular.
We found that @fredyc/draft-js-typeahead demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
pnpm 10 blocks lifecycle scripts by default to improve security, addressing supply chain attack risks but sparking debate over compatibility and workflow changes.
Product
Socket now supports uv.lock files to ensure consistent, secure dependency resolution for Python projects and enhance supply chain security.
Research
Security News
Socket researchers have discovered multiple malicious npm packages targeting Solana private keys, abusing Gmail to exfiltrate the data and drain Solana wallets.