Security News
Crates.io Users Targeted by Phishing Emails
The Rust Security Response WG is warning of phishing emails from rustfoundation.dev targeting crates.io users.
By Sarah Gooding - Sep 12, 2025
@tigerconnect/web-component-library
Advanced tools
Web Component Library
About this project
- Developed with Storybook
- Bundled with rollup.js
- Testing with test-runner and jest-image-snapshot
Development Setup
npm cito install dependenciesnpm run storybookfor developmentnpm run deployto build and publish the library to NPM and Storybook application to GitHub Pages. See Publishing for more details.npm run gento create a new component.
Visual Testing Procedure
npm run storybookto have it running, the test-runner will run against this- In a separate terminal, run
npm test. Failed tests will create a diff image that you can find in each component's respective snapshot diff folder. - Determine if the failed tests are intentional based on your changes, or are regressions. If they
are intentional, rerun that component's tests and set a new baseline image to test against with
npx test-storybook COMPONENT -u. E.g.npx test-storybook Modal -u - Be sure to commit the new baseline image(s) with your PR.
See test-runner and jest-image-snapshot for documentation.
Using the library in a project locally
There are other methods for developing the project completely locally, however they suffered from
caching issues. Instead the recommended approach is to publish a beta version of the project and
then npm install that into the other repo you are working in (e.g. in web-react-ui-toolkit).
This means that each time you make changes and want them to be available in the downstream repo, you
will need to publish another beta version.
We follow the following convention for publishing a beta version:
- From inside the
web-component-libraryrepository
- Increment the version field in
package.jsonand append-<initials>.beta.<beta version number>. E.g. if the current package version is2.1.0then the result would be2.1.1-ms.beta.1for Mahesh Sundaram's first beta version. - Run
npm run build - Then
npm publish --tag beta
- Then inside the repository using the library. e.g. inside
web-react-ui-toolkit
- Run
npm install @tigerconnect/web-component-library@<beta version> --save-exactE.g.@tigerconnect/web-component-library@2.1.1-ms.beta.1 --save-exact - You will then need to restart the watcher process for
web-react-ui-toolkit
Once you are satisfied with your changes in web-component-library you should checkout the changes
you made to package.json and first merge your PR as unrelease package changes (see
CHANGELOG.md). Once your PR is merged, you then can create a subsequent PR that increments the
package version and moves the unreleased changes to released in the changelog. Finally in the
downstream repo you can update the installed web-component-library package version to the latest
published version.
Editor Setup
This project uses PostCSS, which will require some setting changes so that your CSS files will be understood and formatted auto-correctly:
VS Code
Include in your VSCode editor settings (JSON):
"files.associations": {
"*.css": "scss"
}
"editor.codeActionsOnSave": {
"source.fixAll.stylelint": true
}
Vim
As a quick workaround you can use :set ft=scss.
Publishing
- First merge your feature work without any changes to the package version. You should document the
changes in CHANGELOG.md under the
Unreleasedsection. - After merging your feature work, create a new PR that increments the package.json version
(following proper semantic versioning) higher than what is currently published. Name the branch
in the format
feature/major.minor.patch. Move what is inUnreleasedheading intoReleasedunder a new version and publish date header. - Merge the version PR.
- Pull down latest master and locally run
npm run deploy. The command will runnpm run buildand thennpm publish.- This command will also build and deploy the latest Storybook application to GitHub Pages.
- Update any repo using this package to have the newly published version and reinstall respectively.
Storybook Deployment
We currently deploy three different versions of Storybook to help facilitate sharing changes during different development phases.
- https://tigertext.github.io/web-component-library/ holds the production version and is deployed
when publishing the library to NPM with
npm run deploy. - https://login.tigerconnect.xyz/app/components/ holds the latest pre-release version (or is in sync with the production version) and is deployed when the master branch is updated.
- https://login.tigerconnect.xyz/feature/FEATURE_BRANCH_NAME/app/components/ holds your development changes and is deployed when your feature branch is updated.
FAQs
a shared component library for tc projects
The npm package @tigerconnect/web-component-library receives a total of 35 weekly downloads. As such, @tigerconnect/web-component-library popularity was classified as not popular.
We found that @tigerconnect/web-component-library demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Package last updated on 09 Jul 2025
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Product
Introducing Custom Pull Request Alert Comment Headers
Socket now lets you customize pull request alert headers, helping security teams share clear guidance right in PRs to speed reviews and reduce back-and-forth.
By André Staltz - Sep 12, 2025
Product
Rust Support Now in Beta
Socket's Rust support is moving to Beta: all users can scan Cargo projects and generate SBOMs, including Cargo.toml-only crates, with Rust-aware supply chain checks.
By Mikola Lysenko, Trevor Norris - Sep 11, 2025