Security News
Feross on TBPN: How North Korea Hijacked Axios
Socket CEO Feross Aboukhadijeh breaks down how North Korea hijacked Axios and what it means for the future of software supply chain security.
By Sarah Gooding - Apr 08, 2026
New Research: Supply Chain Attack on Axios Pulls Malicious Dependency from npm.Details → →
react-github-activity-feed
Advanced tools
react-github-activity-feed
Turn-key Github activity feed React component. Great for portfolio sites of sporadic open-source developers.
react-github-activity-feed
Turn-key Github activity feed React component. Great for portfolio sites of sporadic open-source developers.
Storybook Demo & Docs available here
Most of the credit goes to @caseyscarborough for his work on github-activity-feed
Install
yarn add react-github-activity-feed
# or
npm i --save react-github-activity-feed
QuickStart
import { GithubActivityFeed } from "react-github-activity-feed";
import "react-github-activity-feed/light.css"
// or "react-github-activity-feed/dark.css"
const MyGithubActivity = () => (
<GithubActivityFeed
user="callumjhays"
repo="react-github-activity-feed"
limit={20}
/>
);
Requires react >= v16.8 for functional components & hooks. If you need older version support please post a quick github issue and I'll get around to it.
Why
Like react-github-activity, I was inspired by github-activity-feed but wanted a simpler way to include it in a react app.
I also wanted to publish my first npm react component package and try out Rollup and hosting storybook demos on github.io.
Unlike react-github-activity, rather than starting from scratch (maybe because he wanted support for private events), I just "react-ified" the original library. I also wanted to try avoiding littering the global JS namespace, so I manually copied and edited the source-code.
Limitations
- Limited by github REST api request rate (currently 60/hour). After this, the component will display an error.
- Very bloated (added 160kB) to my next.js production build. Unsure why this
FAQs
Turn-key Github activity feed React component. Great for portfolio sites of sporadic open-source developers.
The npm package react-github-activity-feed receives a total of 2 weekly downloads. As such, react-github-activity-feed popularity was classified as not popular.
We found that react-github-activity-feed demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 10 Oct 2022
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
Attackers Are Impersonating a Linux Foundation Leader in Slack to Target Open Source Developers
OpenSSF has issued a high-severity advisory warning open source developers of an active Slack-based campaign using impersonation to deliver malware.
By Sarah Gooding - Apr 08, 2026
Research
/Security News
North Korea’s Contagious Interview Campaign Spreads Across 5 Ecosystems, Delivering Staged RAT Payloads
Malicious packages published to npm, PyPI, Go Modules, crates.io, and Packagist impersonate developer tooling to fetch staged malware, steal credentials and wallets, and enable remote access.
By Kirill Boychenko - Apr 07, 2026