Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@qwikdev/pwa
Advanced tools
Turn your Qwik Application into an offline compatible PWA (Progressive Web Application) using Workbox but without the hassle.
npm install --save-dev @qwikdev/pwa
vite.config.ts
:
import { qwikPwa } from "@qwikdev/pwa";
export default defineConfig(() => {
return {
define: {
// (optional) enables debugging in workbox
"process.env.NODE_ENV": JSON.stringify("development"),
},
plugins: [
qwikCity(),
qwikVite(),
// The options are set by default
qwikPwa({
/* options */
}),
],
};
});
src/routes/service-worker.ts
:
import { setupServiceWorker } from "@builder.io/qwik-city/service-worker";
import { setupPwa } from "@qwikdev/pwa/sw";
setupServiceWorker();
+setupPwa();
- addEventListener("install", () => self.skipWaiting());
- addEventListener("activate", () => self.clients.claim());
- declare const self: ServiceWorkerGlobalScope;
By default, your application will be auto-updated when there's a new version of the service worker available and it is installed: in a future version, you will be able to customize this behavior to use prompt
for update:
import { setupServiceWorker } from "@builder.io/qwik-city/service-worker";
import { setupPwa } from "@qwikdev/pwa/sw";
setupServiceWorker();
setupPwa("prompt");
public/manifest.json
:
"background_color": "#fff",
+ "theme_color": "#fff",
For more information, check the following pages:
src/components/router-head/router-head.tsx
:
// PWA compatible generated icons for different browsers
import * as pwaHead from "@qwikdev/pwa/head";
export const RouterHead = component$(() => {
...
{pwaHead.meta.map((l) => (
<meta key={l.key} {...l} />
))}
{pwaHead.links.map((l) => (
<link key={l.key} {...l} />
))}
...
Make sure you remove the <link rel="icon" type="image/svg+xml" href="/favicon.svg" />
line in your router-head file.
Now your application is PWA-friendly.
One feature of service workers is the ability to save a set of files to the cache when the service worker is installing. This is often referred to as "precaching", since you are caching content ahead of the service worker being used. Chrome for Developers
Assets like js modules generated by qwik (q-*.js
), images, public/
assets, or any file that's emitted in the dist/
directory by the build step would be precached when the service worker instantiates, so the plugin makes sure it provides the best client-side offline experience.
By default in this plugin, every route that does not include params (/
or /demo/flower
) is precached on the first run of the application when the browser registers the service worker.
For the rest of the defined routes (routes with params like /dynamic/[id]
, SSG routes, or API routes), they are not precached, but there are workbox navigation routes defined that would cache them on-demand and per request, the reason is precaching too many assets on the first run would cause a laggy experience for the user, especially when these kind of routes have the potential to generate so many more files.
Imagine there's an SSG /blog/[id]
route that generates 120 blog posts, in this case, fetching 120 pages of blog posts in the application startup would not seem ideal.
Just fetch the desired page or asset so it gets cached for later uses.
fetch("/blog/how-to-use-qwik");
For API routes and any other routes that do not meet the conditions mentioned above, there's a Network-First handler.
The plugin would generate all of the adaptive icons needed for different devices with different ratios in manifest.json
based on your main icon in the build process using @vite-pwa/assets-generator.
For full PWA compatibility, you can put your screenshots with the following pattern in the public/manifest.json
file.
...
"screenshots": [
{
"src": "/screenshot.png",
"type": "image/png",
"sizes": "862x568"
},
{
"src": "/screenshot.png",
"type": "image/png",
"sizes": "862x568",
"form_factor": "wide"
}
]
For beautiful screenshots, you can use Progressier Screenshots Generator.
FAQs
Qwik PWA
We found that @qwikdev/pwa demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 5 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.