Research
npm Malware Targets Telegram Bot Developers with Persistent SSH Backdoors
Malicious npm packages posing as Telegram bot libraries install SSH backdoors and exfiltrate data from Linux developer machines.
By Kush Pandya - Apr 18, 2025
You're Invited: Meet the Socket team at BSidesSF and RSAC - April 27 - May 1.RSVP →
@talend/react-forms
Advanced tools
@talend/react-forms
Introduction
This library is designed to be used on top of react-jsonschema-form, a React component for building Web forms from JSONSchema.
In addition of Mozilla lib, this wrapper uses react-bootstrap to not have to maintain Bootstrap markup.
Installation
Run npm install --save @talend/react-forms.
Usage
The forms can be used like any other React components. You'll have to pass it a JSONSchema and a onSubmit callback as a minimum to handle forms rendering and get the data back.
import Form from '@talend/react-forms';
class MyForm extends React.Component {
onSubmit(formData) {
console.log(formData);
}
onCancel() {
console.log('Cancelled');
}
render() {
const actions = [
{ style: 'link', onClick: this.onCancel, type: 'button', label: 'CANCEL' },
{ style: 'primary', type: 'submit', label: 'VALIDATE' },
];
return <Form data={this.props.data} actions={actions} onSubmit={this.onSubmit} />;
}
}
Here is the archetype of the data property required to render the form:
{
"jsonSchema": {},
"uiSchema": {},
"properties": {}
}
Actions
Forms now render a react-talend-components Action component for each action given to it.
Each action accept the following properties :
| property | propType | required | default | doc |
|---|---|---|---|---|
| iconPosition | other | no | - | |
| icon | string | no | - | |
| hideLabel | bool | no | - | |
| disabled | bool | no | {false} | |
| style | string | no | "default" | equivalent to action bsStyle props |
| iconTransform | string | no | - | |
| id | string | no | - | |
| inProgress | bool | no | {false} | |
| label | string | yes | - | |
| link | bool | no | - | |
| model | object | no | - | |
| name | string | no | - | render a name button html property |
| onClick | func | yes | - | execute the callback with formData, formId, propertyName, propertyValue as parameters |
| tooltip | bool | no | - | |
| tooltipPlacement | other | no | "top" | |
| type | 'submit'|'button' | no | - | by default render a button without submit type |
Handlers
If uiSchema has some triggers like
{
"jsonSchema": {
"id": "ListExample",
"type": "object",
"properties": {
"propertyName": {
"type": "string",
"enum": ["option 0", "option 1", "option 2"]
}
}
},
"uiSchema": {
"propertyName": {
"ui:trigger": ["after"]
}
},
"properties": {}
}
Then onChange will be triggered when propertyName field value has changed.
import Form from '@talend/react-forms';
class MyForm extends React.Component {
onChange(formData, formId, propertyName, propertyValue) {
console.log(formData, formId, propertyName, propertyValue);
}
onSubmit(formData) {
console.log(formData);
}
render() {
return <Form data={this.props.data} onChange={this.onChange} onSubmit={this.onSubmit} />;
}
}
PropTypes
The data and actions PropTypes are exported for easy reuse. You can use them by importing the DataPropTypes and ActionsPropTypes functions.
import Form, { DataPropTypes, ActionsPropTypes } from '@talend/react-forms';
Validation
You can use validation from outside (let say button outside the form) this way:
import validate from '@talend/react-forms/lib/validate';
function isValid({ payload }) {
return validate(payload.jsonSchema, payload.formData);
}
Build with webpack
@talend/react-forms comes with react-ace lazy loaded. Modes are loaded from CDN. No more additional config is required.
LICENSE
Copyright (c) 2006-2016 Talend
Licensed under the Apache V2 License
FAQs
React forms library based on json schema form.
The npm package @talend/react-forms receives a total of 1,750 weekly downloads. As such, @talend/react-forms popularity was classified as popular.
We found that @talend/react-forms demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Package last updated on 26 Feb 2025
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
Python Tools Are Quickly Adopting the New pylock.toml Standard
pip, PDM, pip-audit, and the packaging library are already adding support for Python’s new lock file format.
By Sarah Gooding - Apr 18, 2025
Product
Go Support Is Now Generally Available
Socket's Go support is now generally available, bringing automatic scanning and deep code analysis to all users with Go projects.
By Peter van der Zee, Ryan Eberhardt - Apr 17, 2025