Research
Security News
Threat Actor Exposes Playbook for Exploiting npm to Build Blockchain-Powered Botnets
A threat actor's playbook for exploiting the npm ecosystem was exposed on the dark web, detailing how to build a blockchain-powered botnet.
@wordpress/babel-plugin-import-jsx-pragma
Advanced tools
Babel transform plugin for automatically injecting an import to be used as the pragma for the React JSX Transform plugin.
Babel transform plugin for automatically injecting an import to be used as the pragma for the React JSX Transform plugin.
JSX is merely a syntactic sugar for a function call, typically to React.createElement
when used with React. As such, it requires that the function referenced by this transform be within the scope of the file where the JSX occurs. In a typical React project, this means React must be imported in any file where JSX exists.
Babel Plugin Import JSX Pragma automates this process by introducing the necessary import automatically wherever JSX exists, allowing you to use JSX in your code without thinking to ensure the transformed function is within scope. It respects existing import statements, as well as scope variable declarations.
Install the module to your project using npm.
npm install @wordpress/babel-plugin-import-jsx-pragma
Note: This package requires Node.js 14.0.0 or later. It is not compatible with older versions.
Refer to the Babel Plugins documentation if you don't yet have experience working with Babel plugins.
Include @wordpress/babel-plugin-import-jsx-pragma
(and @babel/plugin-transform-react-jsx) as plugins in your Babel configuration. If you don't include both you will receive errors when encountering JSX tokens.
// .babelrc.js
module.exports = {
plugins: [
'@wordpress/babel-plugin-import-jsx-pragma',
'@babel/plugin-transform-react-jsx',
],
};
Note: @wordpress/babel-plugin-import-jsx-pragma
is included in @wordpress/babel-preset-default
(default preset for WordPress development) starting from v4.0.0
. If you are using this preset, you shouldn't include this plugin in your Babel config.
As the @babel/plugin-transform-react-jsx
plugin offers options to customize the pragma
to which the transform references, there are equivalent options to assign for customizing the imports generated.
For example, if you are using the @wordpress/element
package, you may want to use the following configuration:
// .babelrc.js
module.exports = {
plugins: [
[
'@wordpress/babel-plugin-import-jsx-pragma',
{
scopeVariable: 'createElement',
scopeVariableFrag: 'Fragment',
source: '@wordpress/element',
isDefault: false,
},
],
[
'@babel/plugin-transform-react-jsx',
{
pragma: 'createElement',
pragmaFrag: 'Fragment',
},
],
],
};
scopeVariable
Type: String
Name of variable required to be in scope for use by the JSX pragma. For the default pragma of React.createElement, the React variable must be within scope.
scopeVariableFrag
Type: String
Name of variable required to be in scope for <></>
Fragment
JSX. Named <Fragment />
elements
expect Fragment to be in scope and will not add the import.
source
Type: String
The module from which the scope variable is to be imported when missing.
isDefault
Type: Boolean
Whether the scopeVariable is the default import of the source module. Note that this has no impact
on scopeVariableFrag
.
This is an individual package that's part of the Gutenberg project. The project is organized as a monorepo. It's made up of multiple self-contained software packages, each with a specific purpose. The packages in this monorepo are published to npm and used by WordPress as well as other software projects.
To find out more about contributing to this package or Gutenberg as a whole, please read the project's main contributor guide.
FAQs
Babel transform plugin for automatically injecting an import to be used as the pragma for the React JSX Transform plugin.
The npm package @wordpress/babel-plugin-import-jsx-pragma receives a total of 73,232 weekly downloads. As such, @wordpress/babel-plugin-import-jsx-pragma popularity was classified as popular.
We found that @wordpress/babel-plugin-import-jsx-pragma demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
A threat actor's playbook for exploiting the npm ecosystem was exposed on the dark web, detailing how to build a blockchain-powered botnet.
Security News
NVD’s backlog surpasses 20,000 CVEs as analysis slows and NIST announces new system updates to address ongoing delays.
Security News
Research
A malicious npm package disguised as a WhatsApp client is exploiting authentication flows with a remote kill switch to exfiltrate data and destroy files.