Security News
The Hidden Blast Radius of the Axios Compromise
The Axios compromise shows how time-dependent dependency resolution makes exposure harder to detect and contain.
By Ahmad Nassri - Apr 01, 2026
New Research: Supply Chain Attack on Axios Pulls Malicious Dependency from npm.Details → →
ldclient-react
Advanced tools
LaunchDarkly SDK for Browser JavaScript - React Wrapper
Introduction
This is an optional React wrapper for the LaunchDarkly SDK for browser JavaScript SDK. It builds upon the JavaScript SDK, supporting all of the same functionality, but using React's Context API to provide additional conveniences:
- Easy initialization and usage with React.
- Feature flags as camelCased props.
- Subscription to flag changes out of the box.
For a general overview of JavaScript SDK characteristics, see the main README. Also see the online React SDK Reference.
Dependency
This SDK needs React >= 16.3.0 because it uses the Context API.
Installation
yarn add ldclient-react
Quickstart
-
Call the
withLDProviderfunction with your clientSideID and then pass the resulting function your root React component:import { withLDProvider } from 'ldclient-react'; const App = () => <div> <Home /> </div>; export default withLDProvider({ clientSideID: 'your-client-side-id' })(App); -
Anywhere you need flags, call the
withLDConsumerfunction and then pass your component to the resulting function. Your flags are available via props.flags:import { withLDConsumer } from 'ldclient-react'; // flags are available via props const Home = ({ flags }) => { return flags.devTestFlag ? <div>Flag on</div> : <div>Flag off</div>; }; export default withLDConsumer()(Home);
API
withLDProvider(config: { clientSideID: string, user?: LDUser, options?: LDOptions, flags?: LDFlagSet })
withLDProvider is a function which accepts a config object which is used to initialise ldclient-js.
It returns a function which accepts your root react component and returns a HOC. This HOC does three things:
-
It initializes the ldClient instance by calling the
initializemethod of ldclient-js oncomponentDidMount -
It saves all flags and the ldClient instance in the Context API
-
It subscribes to flag changes and propagate them through the Context API
Parameter
config: { clientSideID: string, user?: LDUser, options?: LDOptions, flags?: LDFlagSet }
clientSideID: string
This is the clientSideID specific to your project and environment. You can find this in under account settings in your LD portal. This is the only property required to use the React SDK.
user?: LDUser
This user will be used to initialize the SDK. For more info about users, check here. If not specified, ldclient-react will create a default user that looks like this:
const defaultUser = {
key: uuid.v4(), // random guid
};
options?: LDOptions
These options will be used to customise the ldClient instance. To see what options are available, check the JS SDK reference. For example:
withLDProvider({
clientSideID,
options: {
bootstrap: 'localStorage',
},
})(App);
flags?: LDFlagSet
You can explicitly specify the flags available to your app by setting this property. This is a flat key value object where key is the feature flag key (as shown on your LaunchDarkly dashboard, not the camelCased version) and value is the default value of the flag. Under the hood, the React SDK calls ldClient.variation on each flag you specify here. If unspecified, the React SDK will call ldClient.allFlags which is equivalent to calling variation on all the flags exposed to the JS SDK.
Explicitly specifying flags might give you better usage statistics than calling allFlags. However you will need to maintain
this list when you are adding new flags or removing old ones. For example, the code below makes dev-test-flag
and another-flag available to your app and subscribes to them. All other flags are ignored.
withLDProvider({
clientSideID,
flags: {
'dev-test-flag': false,
'another-flag': false,
},
})(App);
Returns
The return of withLDProvider is a function that takes your root React component and returns a HOC
with flags and ldClient saved in the Context API.
Example Usage
import React from 'react';
import { withLDProvider } from 'ldclient-react';
import Home from './home';
const App = () => (
<div>
<Home />
</div>
);
export default withLDProvider({
clientSideID: 'your-client-side-id',
user: { key: 'some-user-key' }, // optional
options: { bootstrap: 'localStorage' }, // optional
})(App);
withLDConsumer(options?: { clientOnly: boolean })
withLDConsumer is a function which accepts an optional options object. It returns a function which
accepts your component and returns a HOC injected with flags and ldClient props.
Use withLDConsumer anywhere you need flags and ldClient. Your flags will
be available as camelCased properties under this.props.flags and ldClient as this.props.ldClient.
Parameter
options: { clientOnly: boolean } = { clientOnly: false }
clientOnly: boolean
If your component only needs the ldClient instance but not flags, set this to true. By default this
is false meaning your component will get both flags and the ldClient instance.
Returns
The return of withLDConsumer is a function that takes your component and returns a HOC with
flags and the ldClient instance injected via props.
Example usage:
import React, { Component } from 'react';
import { withLDConsumer } from 'ldclient-react';
class Home extends Component {
// track goals
onAddToCart = () => this.props.ldClient.track('add to cart');
// change user context
onLoginSuccessful = () => this.props.ldClient.identify({ key: 'someUserId' });
render() {
// access your flags through this.props.flags
return <div>{this.props.flags.devTestFlag ? <div>Flag on</div> : <div>Flag off</div>}</div>;
}
}
export default withLDConsumer()(Home);
Example
Check the example for a fully working spa with react and react-router. Remember to enter your clientSideID in the client root app file and create a flag called dev-test-flag in your dashboard before running the example.
Alternatives from the community
Third-party developers have created their own React interfaces for the LaunchDarkly JavaScript SDK:
- TrueCar/react-launch-darkly: A basic React wrapper with similar functionality
- yusinto/ld-redux: An implementation specifically for Redux
- tdeekens/flopflip: A flexible feature-toggling library that integrates with LaunchDarkly
FAQs
LaunchDarkly SDK for React
The npm package ldclient-react receives a total of 2 weekly downloads. As such, ldclient-react popularity was classified as not popular.
We found that ldclient-react demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 02 May 2019
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
Supply Chain Attack on Axios Pulls Malicious Dependency from npm
A supply chain attack on Axios introduced a malicious dependency, plain-crypto-js@4.2.1, published minutes earlier and absent from the project’s GitHub releases.
By Socket Research Team - Mar 31, 2026
Research
TeamPCP Compromises Telnyx Python SDK to Deliver Credential-Stealing Malware
Malicious versions of the Telnyx Python SDK on PyPI delivered credential-stealing malware via a multi-stage supply chain attack.
By Socket Research Team - Mar 27, 2026