Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
@planningcenter/doxy-web
Advanced tools
Unified styles + React components for Church Center Web.
cd Code
git clone git@github.com:planningcenter/doxy-web.git
cd doxy-web
yarn install
yarn start
- compiles SCSS/JS + runs Storybook using localhost
yarn develop
- compiles SCSS/JS + watches src
directory for changesyarn develop:yalc
- compiles/watches SCSS/JS and locally publishes bundled code via yalc
(this is the preferred way to test package changes locally in church-center
or proxied app - (check out the yalc development guide for more details)yarn test
- runs defined component tests using Jestyarn test:watch
- runs tests + watches src
directory for changesyarn start
to use Storybook development environmentpco-box
- http://localhost:3000
pco cloud-box
- http://first.churchcenter.test:3000
yarn develop:yalc
to watch src
for changes and push to yalc
registrychurch-center
(or proxied app), run yalc add @planningcenter/doxy-web
to consume/test local changesThe sandbox provides another local testing/development environment where multiple UI elements/components can be viewed simultaneously. This is especially useful for making new CSS changes because you can see multiple instances of the UI states vs. in Storybook, where you can only toggle 1 state at a time.
yarn sandbox
(parallel command for yarn develop:yalc
& cd sandbox && yarn start
)localhost
link in terminal to view local Parcel appTo add new views
sandbox/src/pages
directory and export from pages/index.js
src/App.jsx
and add to <Router />
with path<Link />
to src/components/Sidebar.jsx
@planningcenter/doxy-web
are made using a "batched" process by deploying changes to NPM from main
.main
and merged using our standard PR process.release candidate
can be published to npm for use on staging
. Release candidate versions should follow -rc.0
naming conventions (check NPM Registry to verify most-current version number)
latest
version is 1.16.2
and the proposed change is considered a minor
change, the first release candidate version would be 1.17.0-rc.0
package.json
npm login
npm publish --dry-run
to verify package contents and correct version numbernpm publish --tag next
church-center
(or proxied app), run yarn add @planningcenter/doxy-web@next
Refer to the Planning Center release strategy on Notion.
yarn deploy:storybook
Import @planningcenter/doxy-web/dist/css/doxy-web
import { Heading } from "@planningcenter/doxy-web"
FAQs
Doxy for Church Center Web
We found that @planningcenter/doxy-web demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.