Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@logux/state
Advanced tools
A tiny (152 bytes) state manager for React/Preact/Vue/Svelte with many atomic tree-shakable stores
A tiny state manager for React, Preact, Vue and Svelte. It uses many atomic stores and direct manipulation.
// store/users.ts
import { createStore, getValue } from '@logux/state'
export const users = createStore<User[]>(() => {
users.set([])
})
export function addUser(user: User) {
users.set([...getValue(users), user])
}
// store/admins.ts
import { createDerived } from '@logux/state'
import { users } from './users.js'
export const admins = createDerived(users, list =>
list.filter(user => user.isAdmin)
)
// components/admins.tsx
import { useStore } from '@logux/state/react'
import { admins } from '../stores/admins.js'
export const Admins = () => {
const list = useStore(admins)
return (
<ul>
{list.map(user => <UserItem user={user} />)}
</ul>
)
}
It is part of Logux project but can be used without any other Logux parts.
npm install @logux/state
localStorage
.In Logux State, stores are smart. They subscribe to events,
validate input, send AJAX requests, etc. For instance,
build-in Router store subscribes to click on <a>
and window.onpopstate
. It simplifies testing and switching
between UI frameworks (like from React to React Native).
import { createStore } from '@logux/state'
export type StoreType = …
export const simpleStore = createStore<StoreType>(() => {
simpleStore.set(initialValue)
// initializer: subscribe to events
return () => {
// destructor: unsubscribe from all events
}
})
Stores have two modes: active and disabled. From the beginning, the store is in disabled mode and does not keep value. On the first subscriber, the store will call the initializer and will move to active mode. One second after unsubscribing of the last listener, the store will call the destructor.
The only way to get store’s value is to subscribe to store’s changes:
const unsubscribe2 = store.listen(value => {
// Call listener on store changes
})
const unsubscribe1 = store.subscribe(value => {
// Call listener immediately after subscribing and then on any changes
})
By we have shortcut to subscribe, return value and unsubscribe:
import { getValue } from '@logux/store'
getValue(store) //=> store’s value
Simple store API is the basement for all other stores.
import { createStore, getValue } from '@logux/state'
export const counter = createStore<number>(() => {
counter.set(0)
})
export function increaseCounter() {
counter.set(getValue(counter) + 1)
}
You can change store value by calling the store.set(newValue)
method.
This store with key-value pairs.
import { createMap } from '@logux/state'
export interface ProfileValue {
name: string,
email?: string
}
export const profile = createMap<ProfileValue>(() => {
profile.setKey('name', 'anonymous')
})
In additional to store.set(newObject)
it has store.setKey(key, value)
to change specific key.
Changes listener receives changed key as a second argument.
profile.listen((value, changed) => {
console.log(`${changed} new value ${value[changed]}`)
})
Map store object link is the same. store.set(newObject)
changes all keys
inside the old object.
The store is based on other store’s value.
import { createDerived } from '@logux/state'
import { users } from './users.js'
export const admins = createDerived(users, all => {
// This callback will be called on every `users` changes
return all.filter(user => user.isAdmin)
})
You can combine a value from multiple stores:
import { lastVisit } from './lastVisit.js'
import { posts } from './posts.js'
export const newPosts = createDerived([lastVisit, posts], (when, allPosts) => {
return allPosts.filter(post => post.publishedAt > when)
})
A template to create a similar store. Each store made by the template
is map store with at least the id
key.
import { defineMap, BuilderStore } from '@logux/state'
export interface PostValue {
id: string
title: string
updatedAt: number
}
export const Post = defineMap<PostValue>((newPost, id) => {
newPost.setKey('title', 'New post')
newPost.setKey('updatedAt', Date.now())
// initializer: subscribe to events
return () => {
// destructor: unsubscribe from all events
}
})
export function renamePost (post: BuilderStore<typeof Post>, newTitle: string) {
post.setKey('title', newTitle)
post.setKey('updatedAt', Date.now())
}
Builder is a function, which returns a new store instance.
import { Post } from '../stores/post.js'
const post = Post(id)
If a store has listeners, the builder will return the old post instance on the same store’s ID.
Post('same ID') === Post('same ID')
Stores are not only to keep values. You can use them to track time, to load data from server.
import { createStore } from '@logux/state'
export const currentTime = createStore<number>(() => {
currentTime.set(Date.now())
const updating = setInterval(() => {
currentTime.set(Date.now())
}, 1000)
return () => {
clearInterval(updating)
}
})
Use derived stores to create chains of reactive computations.
import { createDerived } from '@logux/state'
import { currentTime } from './currentTime.js'
const appStarted = Date.now()
export const userInApp = createDerived(currentTime, now => {
return now - appStarted
})
We recommend moving all logic, which is not highly related to UI to the stores. Let your stores track URL routing, validation, sending data to a server.
With application logic in the stores, it’s much easy to write and run tests. It is also easy to change your UI framework. For instance, add React Native version of the application.
We recommend doing all store changes in separated functions. It will allow to tree shake unused functions from JS bundle.
export function changeStore (newValue: string) {
if (validate(newValue)) {
throw new Error('New value is not valid')
} else {
store.set(newValue)
}
}
For builder, you can add properties to the store, but try to avoid it.
interface UserExt {
avatarCache?: string
}
export function User = defineMap<UserValue, [], UserExt>((store, id) => {
…
})
function getAvatar (user: BuilderStore<typeof User>) {
if (!user.avatarCache) {
user.avatarCache = generateAvatar(getValue(user).email)
}
return user.avatarCache
}
Use useStore()
hook to get store’s value and re-render component
on store’s changes.
import { useStore } from '@logux/state/react' // or '@logux/state/preact'
import { profile } from '../stores/profile.js'
import { User } from '../stores/user.js'
export const Header = () => {
const profile = useStore(profile)
const currentUser = useStore(User(profile.userId))
return <header>${currentUser.name}<header>
}
Use useStore()
composable function to get store’s value
and re-render component on store’s changes.
<template>
<header>{{ currentUser.name }}</header>
</template>
<script>
import { useStore } from '@logux/state/vue'
import { profile } from '../stores/profile.js'
import { User } from '../stores/user.js'
export default {
setup () {
const profile = useStore(profile)
const currentUser = useStore(User(profile.value.userId))
return { currentUser }
}
}
</script>
Every store implements
Svelte store contract.
Put $
before store variable to get store’s
value and subscribe for store’s changes.
<script>
import { profile } from '../stores/profile.js'
import { User } from '../stores/user.js'
const profile = useStore(profile)
const currentUser = useStore(User(profile.userId))
</script>
<header>{$currentUser.name}</header>
Adding an empty listener by keepActive(store)
keeps the store
in active mode during the test. cleanStores(store1, store2, …)
cleans
stores used in the test.
import { getValue, cleanStores, keepActive } from '@logux/state'
import { profile } from './profile.js'
afterEach(() => {
cleanStores(profile)
})
it('is anonymous from the beginning', () => {
keepActive(profile)
expect(getValue(profile)).toEqual({ name: 'anonymous' })
})
You can create a store to keep value with some prefix in localStorage
.
import { createPersistent } from '@logux/state'
export interface CartValue {
list: string[]
}
export const shoppingCart = createPersistent<CartValue>({ list: [] }, 'cart')
This store also listen for keys changes in localStorage
and can be used
to synchronize changes between browser tabs.
Since we promote moving logic to store, the router is a good part of the application to be moved from UI framework like React.
import { createRouter } from '@logux/state'
// Types for :params in route templates
interface Routes {
home: void
category: 'categoryId'
post: 'categoryId' | 'id'
}
export const router = createRouter<Routes>({
home: '/',
category: '/posts/:categoryId',
post: '/posts/:category/:id'
})
Store in active mode listen for <a>
clicks on document.body
and Back button
in browser.
You can use getPagePath()
to avoid hard coding URL to a template. It is better
to use the router as a single place of truth.
import { getPagePath } from '@logux/state'
…
<a href={getPagePath(router, 'post', { categoryId: 'guides', id: '10' })}>
If you need to change URL programmatically you can use openPage
:
onExit() {
document.cookie = ''
openPage(router, 'home')
}
FAQs
A tiny (152 bytes) state manager for React/Preact/Vue/Svelte with many atomic tree-shakable stores
We found that @logux/state demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.