Security News
GitHub Removes Malicious Pull Requests Targeting Open Source Repositories
GitHub removed 27 malicious pull requests attempting to inject harmful code across multiple open source repositories, in another round of low-effort attacks.
@patternfly/patternfly
Advanced tools
npm install @patternfly/patternfly --save
When you install PatternFly 5, the package includes:
node_modules/@patternfly/patternfly/patternfly.css
node_modules/@patternfly/patternfly/<ComponentName>/styles.css
node_modules/@patternfly/patternfly/patternfly.scss
node_modules/@patternfly/patternfly/<ComponentName>/styles.scss
Any of the files above are meant for use in consuming the library. The recommended consumption approach will vary from project to project.
PatternFly 5 Development requires Node v18.0.0 or greater
To setup the PatternFly 5 development environment:
yarn install
from the project rootyarn start
http://localhost:8001
After working on your contribution, check for accessibility violations.
To create source file scaffolding for a new component, layout, utility, or demo, run the NPM script:
node generate <CamelName>
Below are the full options for this script:
Options:
-f, --folder <folder> Source folder (components, demos, layouts, or utilities) (default: "components")
To create a "Test component" component (.pf-v6-c-test-component
), run:
node generate TestComponent
To create a "Test layout" layout (.pf-l-test-layout
), run:
node generate TestLayout -f layouts
To create 3 new demos named "Test demo", "Test demo 2", and "Test demo 3", run:
node generate TestDemo TestDemo2 TestDemo3 -f demos
When making visual changes to a full page example, new example preview screenshots must be generated. To update the screenshots:
yarn build && yarn serve
yarn screenshots
For information on how to contribute, refer to our guidelines.
For more information on using CSS and Sass, refer to our guidelines.
For more information on custom icons, refer to our guidelines.
When creating a brand new component, it should be released as beta in order to get feedback.
PatternFly uses aXe: The Accessibility Engine to check for accessibility violations. Our goal is to meet WCAG 2.0 AA requirements, as noted in our Accessibility guide.
aXe is available as either a browser extension or npm script.
To run the a11y audit locally:
$PATH
brew cask install chromedriver
yarn build && yarn serve
yarn a11y
The tool is configured to return WCAG 2.0 AA violations for the full page renderings of all components, layouts, utilities, and demos. The tool will provide feedback about what the violation is and a link to documentation about how to address the violation.
The same tool is also available as a browser extension for Chrome and Firefox.
Ignore the violations that aren’t related to your contribution.
Fix violations related to your contribution.
If there are violations that are not obvious how to fix, then create an issue with information about the violation that was found. For example, some violations might require further discussion before they can be addressed. And some violations may not be valid and require changes to the workspace or tooling to stop flagging the violation.
If you have any suggestions about ways that we can improve how we use this tool, please let us know by opening an issue.
How do I use CSS variables to customize the library?
PatternFly 5 is supported on the latest two major versions of the following browsers:
FAQs
Assets, source, tooling, and content for PatternFly 4
The npm package @patternfly/patternfly receives a total of 25,617 weekly downloads. As such, @patternfly/patternfly popularity was classified as popular.
We found that @patternfly/patternfly demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 16 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
GitHub removed 27 malicious pull requests attempting to inject harmful code across multiple open source repositories, in another round of low-effort attacks.
Security News
RubyGems.org has added a new "maintainer" role that allows for publishing new versions of gems. This new permission type is aimed at improving security for gem owners and the service overall.
Security News
Node.js will be enforcing stricter semver-major PR policies a month before major releases to enhance stability and ensure reliable release candidates.