Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
nanocomponent
Advanced tools
Native DOM components that pair nicely with DOM diffing algorithms.
// button.js
var Nanocomponent = require('nanocomponent')
var html = require('bel')
function Button () {
if (!(this instanceof Button)) return new Button()
this._color = null
Nanocomponent.call(this)
}
Button.prototype = Object.create(Nanocomponent.prototype)
Button.prototype._render = function (color) {
this._color = color
return html`
<button style="background-color: ${color}">
Click Me
</button>
`
}
// Override default shallow compare _update function
Button.prototype._update = function (newColor) {
return newColor !== this._color
}
// index.js
var choo = require('choo')
var Button = require('./button.js')
var button = Button()
var app = choo()
app.route('/', mainView)
app.mount('body')
function mainView (state, emit) {
return html`
<body>
${button.render(state.color)}
</body>
`
}
app.use(function (state, emitter) {
state.color = 'green'
})
These are some common patterns you might encounter when writing components.
Nanocomponents is part of the choo ecosystem, but works great standalone!
var Button = require('./button.js')
var button = new Button()
// Attach to DOM
document.body.appendChild(button.render('green'))
// Update mounted component
button.render('green')
button.render('red')
// Log a reference to the mounted dom node
console.log(button.element)
Sometimes it's useful to be pass around prototype methods into other functions. This can be done by binding the method that's going to be passed around:
var Nanocomponent = require('nanocomponent')
var html = require('bel')
function Component () {
if (!(this instanceof Button)) return new Component()
Nanocomponent.call(this)
// Bind the method so it can be passed around
this._handleClick = this._handleClick.bind(this)
}
Component.prototype = Object.create(Nanocomponent.prototype)
Component.prototype._handleClick = function () {
console.log('element is', this.element)
}
Component.prototype._render = function () {
return html`<div>My component</div>`
}
Because Class syntax is just sugar for prototype code, Nanocomponent can be written using Classes too:
var Nanocomponent = require('nanocomponent')
var html = require('bel')
class Component extends Nanocomponent {
constructor () {
super()
this._color = null
}
_render (color) {
this._color = color
return html`
<div style="background-color: ${color}">
Color is ${color}
</div>
`
}
_update (newColor) {
return newColor !== this._color
}
}
Sometimes you might want to mutate the element that's currently mounted, rather than performing DOM diffing. Think cases like third party widgets that manage themselves.
var Nanocomponent = require('nanocomponent')
var html = require('bel')
function Component () {
if (!(this instanceof Button)) return new Component()
Nanocomponent.call(this)
this._text = ''
}
Component.prototype = Object.create(Nanocomponent.prototype)
Component.prototype._render = function (text) {
this._text = text
return html`<h1>${text}</h1>`
}
Component.prototype._update = function (text) {
if (text !== this._text) {
this._text = text
this.element.innerText = this._text // Directly update the element
}
return false // Don't call _render again
}
Component.prototype._unload = function (text) {
console.log('No longer mounted on the DOM!')
}
Components nest and can skip renders at intermediary levels. Components can also act as containers that shape app data flowing into view specific components.
var Nanocomponent = require('nanocomponent')
var html = require('bel')
var Button = require('./button.js')
function Component () {
if (!(this instanceof Button)) return new Component()
Nanocomponent.call(this)
this._button1 = new Button ()
this._button2 = new Button ()
this._button3 = new Button ()
}
Component.prototype = Object.create(Nanocomponent.prototype)
Component.prototype._render = function (state) {
var colorArray = this._shapeData(state)
return html`
<div>
${this._button1.render(colorArray[0])}
${this._button2.render(colorArray[1])}
${this._button3.render(colorArray[2])}
</div>
`
}
Component.prototype._update = function (state) {
var colorArray = this._shapeData(state) // process app specific data in a container
this._button1.render(colorArray[0]) // pass processed data to owned children components
this._button2.render(colorArray[1])
this._button3.render(colorArray[2])
return false // always return false when mounted
}
Component.prototype._shapeData = function (state) {
return [state.colors.color1, state.colors.color2, state.colors.color3]
}
Make sure you're running a diffing engine that checks for .isSameNode()
, if
it doesn't you'll end up with super weird results because proxy nodes will
probably be rendered which is not what should happen. Probably make sure you're
using morphdom or nanomorph. Seriously.
It's a node that overloads Node.isSameNode()
to compare it to another node.
This is needed because a given DOM node can only exist in one DOM tree at the
time, so we need a way to reference mounted nodes in the tree without actually
using them. Hence the proxy pattern, and the recently added support for it in
certain diffing engines:
var html = require('bel')
var el1 = html`<div>pink is the best</div>`
var el2 = html`<div>blue is the best</div>`
// let's proxy el1
var proxy = html`<div></div>`
proxy.isSameNode = function (targetNode) {
return (targetNode === el1)
}
el1.isSameNode(el1) // true
el1.isSameNode(el2) // false
proxy.isSameNode(el1) // true
proxy.isSameNode(el2) // false
Morphdom is a diffing engine that diffs real DOM trees. It runs a series of checks between nodes to see if they should either be replaced, removed, updated or reordered. This is done using a series of property checks on the nodes.
Since v2.1.0 morphdom
also runs Node.isSameNode(otherNode)
. This
allows us to override the function and replace it with a custom function that
proxies an existing node. Check out the code to see how it works. The result is
that if every element in our tree uses nanocomponent
, only elements that have
changed will be recomputed and re-rendered making things very fast.
nanomorph
, which saw first use in choo 5, has supported isSameNode
since
its conception.
component = Nanocomponent()
Create a new Nanocomponent instance. Additional methods can be set on the prototype.
component.render([…arguments])
Render the component. Returns a proxy node if already mounted on the DOM. Proxy nodes make it so DOM diffing algorithms leave the element alone when diffing.
component.element
A getter
property that returns the component's DOM node if its mounted in the page and
null
when its not.
DOMNode = Nanocomponent.prototype._render([arguments…])
Must be implemented. Component specific render function. Optionally cache
argument values here. Run anything here that needs to run along side node
rendering. Must return a DOMNode. Use _willRender
to run code after
_render
when the component is unmounted.
Boolean = Nanocomponent.prototype._update([arguments…])
Must be implemented. Return a boolean to determine if
prototype._render()
should be called. The _update
method is analogous to
React's shouldComponentUpdate
. Called only when the component is mounted in
the DOM tree.
Nanocomponent.prototype._willRender(el)
A function called right after _render
returns with el
, but before the fully rendered
element is returned to the render
caller. Run any first render hooks here. The _load
and
_unload
hooks are added at this stage.
Nanocomponent.prototype._load(el)
Called when the component is mounted on the DOM. Uses on-load under the hood.
Nanocomponent.prototype._unload(el)
Called when the component is removed from the DOM. Uses on-load under the hood.
Nanocomponent.prototype._didUpdate(el)
Called after a mounted component updates (e.g. _update
returns true). You can use this hook to call
element.scrollIntoView
or other dom methods on the mounted component.
$ npm install nanocomponent
FAQs
Native DOM components that pair nicely with DOM diffing algorithms
The npm package nanocomponent receives a total of 417 weekly downloads. As such, nanocomponent popularity was classified as not popular.
We found that nanocomponent demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 30 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.