Security News
PyPI’s New Archival Feature Closes a Major Security Gap
PyPI now allows maintainers to archive projects, improving security and helping users make informed decisions about their dependencies.
By Sarah Gooding - Jan 30, 2025
New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More →
customize-cra
Advanced tools
customize-cra
This project piggybacks on [`react-app-rewired`](https://github.com/timarney/react-app-rewired/) to customize create-react-app for version 2.0 and higher.
What is customize-cra?
The customize-cra package is a utility for customizing Create React App (CRA) configurations without ejecting. It allows you to override the default Webpack configuration, Babel configuration, and other settings in a CRA project.
What are customize-cra's main functionalities?
Override Webpack Configuration
This feature allows you to override the default Webpack configuration. In this example, a Webpack alias is added to simplify imports from the 'src/components' directory.
const { override, addWebpackAlias } = require('customize-cra');
const path = require('path');
module.exports = override(
addWebpackAlias({
['@components']: path.resolve(__dirname, 'src/components')
})
);Modify Babel Configuration
This feature allows you to modify the Babel configuration. In this example, the 'babel-plugin-styled-components' plugin is added to the Babel configuration.
const { override, addBabelPlugin } = require('customize-cra');
module.exports = override(
addBabelPlugin('babel-plugin-styled-components')
);Add PostCSS Plugins
This feature allows you to add PostCSS plugins to the configuration. In this example, the 'postcss-preset-env' plugin is added.
const { override, addPostcssPlugins } = require('customize-cra');
module.exports = override(
addPostcssPlugins([require('postcss-preset-env')])
);Other packages similar to customize-cra
react-app-rewired
react-app-rewired is a package that allows you to override Create React App configurations without ejecting. It is similar to customize-cra but provides a more general approach to modifying CRA configurations. While customize-cra provides specific functions for common modifications, react-app-rewired allows for more manual and flexible configuration changes.
craco
CRACO (Create React App Configuration Override) is another package that allows you to customize Create React App configurations without ejecting. It is similar to customize-cra but offers a more structured and extensible way to modify CRA configurations. CRACO supports plugins and provides a more organized way to manage configuration changes.
customize-cra
This project piggybacks on react-app-rewired to customize create-react-app for version 2.0 and higher.
To start, this project will export methods I need for what I'm using CRA for, but PRs will of course be welcome.
The functions documented below can be imported by name, and used in your config-overrides.js file, ie
const { addDecoratorsLegacy } = require("customize-cra");
Warning
"Stuff can break" - Dan Abramov
Using this library will override default behavior and configuration of create-react-app, and therefore invalidate the guarentees that come with it. Use with discretion!
Docs
addBabelPlugin(plugin, config)
Adds a babel plugin. Not sure what else to say here.
addDecoratorsLegacy(config)
Add decorators in legacy mode. Be sure to have @babel/plugin-proposal-decorators installed.
disableEsLint(config)
Does what it says. You may need this along with addDecoratorsLegacy in order to get decorators and exports to parse together.
addWebpackAlias(alias, config)
Adds the provided alias info into webpack's alias section. Pass an object literal with as many entries as you'd like, and the whole object will be merged in.
addBundleVisualizer(config)
Adds the bundle visualizer plugin to your webpack config. Be sure to have webpack-bundle-analyzer installed.
MobX Users
If you want CRA 2 to work with MobX, this should get you going.
const { addDecoratorsLegacy, disableEsLint } = require("customize-cra");
module.exports = function override(config) {
addDecoratorsLegacy(config);
disableEsLint(config);
return config;
};
FAQs
[](#contributors-)
The npm package customize-cra receives a total of 76,254 weekly downloads. As such, customize-cra popularity was classified as popular.
We found that customize-cra demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 03 Oct 2018
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
Security News
North Korean APT Lazarus Targets Developers with Malicious npm Package
Malicious npm package postcss-optimizer delivers BeaverTail malware, targeting developer systems; similarities to past campaigns suggest a North Korean connection.
By Kirill Boychenko, Peter van der Zee - Jan 29, 2025
Security News
CISA Brings KEV Data to GitHub
CISA's KEV data is now on GitHub, offering easier access, API integration, commit history tracking, and automated updates for security teams and researchers.
By Sarah Gooding - Jan 29, 2025