Security News
Node.js EOL Versions CVE Dubbed the "Worst CVE of the Year" by Security Experts
Critics call the Node.js EOL CVE a misuse of the system, sparking debate over CVE standards and the growing noise in vulnerability databases.
:dizzy: ActML is a library that allows you to use JSX syntax outside of React world. It aims to provide the same experience in terms of composability and patterns.
/** @jsx A */
import { A, run } from 'actml';
const Message = ({ user, children }) => {
console.log(children(user));
}
const Greeting = (user) => {
return `Hello ${ user.name }!`;
}
run(
<Message user={ { name: 'Emma' } }>
<Greeting />
</Message>
);
// Hello Emma!
(Try it yourself here.)
npm i actml
or yarn install actml
/** @jsx A */
at the top of the file. Otherwise the ActML elements will be transpiled to React.createElement
ActML looks like React but it's not about rendering UI. It's about executing your JavaScript.
const Foo = () => 'bar';
run(<Foo />); // bar
You'll probably wonder why using ActML and instead writing Foo()
we do <Foo />
? The answer is same reason we you do <Component />
instead of React.createElement(Component, null)
. We are declarative instead of imperative. It's much better to say what we want to happen instead of how it happens. Being declarative means having more options for composition.
Also when we write <Foo />
we are not executing our function Foo
. We are just saying that this function should be executed at this place. We create a descriptor of that call which is passed to ActML runtime. This abstraction creates a layer where we can do bunch of things. We can for example process async operations behind the scenes or we can build a map of your application functions.
Every function run by ActML receives a children
prop. Similarly to React that prop represents the children of the element. Here we have two use case - we can call children
as a function or we can return it as a result.
const X = ({ children }) => {
children();
children();
};
const Y = ({ children }) => {
return children;
}
const Message = () => {
console.log('Hello')
};
run(<X><Message /></X>); // prints Hello twice
run(<Y><Message /></Y>); // prints Hello once
If we are calling children
we are getting back an array containing the results of the nested elements. Or if the array contains one item we get directly that item.
const X = () => 'foo';
const Y = () => 'bar';
const Results = ({ children }) => {
console.log(JSON.stringify(children()));
};
run(
<Results>
<X />
<Y />
</Results>
); // prints ["foo","bar"]
Calling manually children
means runs the children X
and Y
and receiving the result of them.
ActML runtime supports both asynchronous and synchronous elements. You can mix them in a single expression. As soon as there is something asynchronous ActML marks the call as such and the result of it is a promise. For example:
const App = async ({ children }) => {
const message = await children();
return message.join(' ');
}
const Greeting = () => 'Hey';
const GetUserFirstName = async () => {
const { data: { first_name }} = await (await fetch('https://reqres.in/api/users/2')).json();
return first_name;
}
const FavoriteColor = () => 'your favorite color is';
const GetFavoriteColor = async () => {
const { data: { color }} = await (await fetch('https://reqres.in/api/products/3')).json();
return color;
}
run(
<App>
<Greeting />
<GetUserFirstName />
<FavoriteColor />
<GetFavoriteColor />
</App>
).then(message => console.log(message));
// outputs: Hey Janet your favorite color is #BF1932
(online demo here)
Notice that <Greeting>
and <FavoriteColor>
are synchronous. ActML waits for all the children to be processed and then resolves the promise returned by the children
call. If all the elements were synchronous they we'll get an array straight away.
import { A, useState } from 'actml';
const E = () => {
const [ getState, setState ] = useState(initialState);
}
Returns two functions for setting and retrieving a state value. In the original React docs the first item is the state value directly but here ActML diverges a little bit by providing a function. It is done to provide a mechanism for immediate retrieval of the update value.
import { A, useEffect } from 'actml';
const E = () => {
useEffect(function sideEffect() {
// ...
return function onElementRemoved() {
// ...
}
}, [ dependencyA, dependencyB ]);
}
The function sideEffect
is fired after the function E
finishes. After that it gets fired only if some of the dependencyA
or dependencyB
are changed. If we pass an empty array we are creating a side effect that is fired only once no matter how many times E
is executed. The function that we pass to useEffect
may return another function that is invoked when the element is removed from the tree.
ActML's useEffect
mimics React's useEffect
import { A, useEffect } from 'actml';
function reducer(state, action) {
switch (action.type) {
case 'increment':
return {count: state.count + 1};
case 'decrement':
return {count: state.count - 1};
default:
throw new Error();
}
}
const E = function () {
const [ getState, dispatch ] = useReducer(reducer, initialState);
//...
dispatch({ type: 'increment' })
}
Very similar to useState
. In fact useReducer
internally uses useState. The mechanism for updating the state is by using actions which are
dispatched and then processed by the
reducer` which returns the new version of the state.
ActML's useReducer
mimics React's useReducer
import { A, Fragment, usePubSub } from 'actml';
const TYPE = 'TYPE';
const Publisher = function () {
const { publish } = usePubSub();
publish(TYPE, 42);
};
const Subscribe = function () {
const { subscribe } = usePubSub();
subscribe(TYPE, (answer) => {
console.log(`The answer is ${ answer }`);
});
};
run(
<Fragment>
<Subscribe />
<Publisher />
</Fragment>
);
The usePubSub
hook can help you if you need to communicate between elements on different levels in the tree. It returns an object with two methods publish
and subscribe
:
publish(<type>, <payload>)
subscribe(<type>, <callback>)
FAQs
Like jsx but for your business logic
The npm package actml receives a total of 16 weekly downloads. As such, actml popularity was classified as not popular.
We found that actml demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Critics call the Node.js EOL CVE a misuse of the system, sparking debate over CVE standards and the growing noise in vulnerability databases.
Security News
cURL and Go security teams are publicly rejecting CVSS as flawed for assessing vulnerabilities and are calling for more accurate, context-aware approaches.
Security News
Bun 1.2 enhances its JavaScript runtime with 90% Node.js compatibility, built-in S3 and Postgres support, HTML Imports, and faster, cloud-first performance.