Security News
The Hidden Blast Radius of the Axios Compromise
The Axios compromise shows how time-dependent dependency resolution makes exposure harder to detect and contain.
By Ahmad Nassri - Apr 01, 2026
New Research: Supply Chain Attack on Axios Pulls Malicious Dependency from npm.Details → →
react-tree-select
Advanced tools
react-tree-select
This project a fork of didierfranc/redux-react-starter
This repository contains the minimal app to get started with redux, react, hot-reloading, async function and some other great stuffs.
How to
yarn 0.18+ must be present on your machine.
Start
Run webpack-dev-server, get ready to code with hot reloading
yarn start
Share
Share your localhost running app to anyone with an internet connection
yarn ngrok
Build
Bundle your app. It will create index.html, main.[hash].js, vendor.[hash].js and manifest.[hash].js
yarn build
Run your build
yarn prod
Deploy
Surge.sh
surge ./dist -d subdomain.surge.sh
Github Pages
mv dist docs
git push upstream master
Then go to your repository, Settings -> Options -> Github Pages and select /docs folder
What's inside ?
Dependencies
lodash 4.17.4
offline-plugin 4.5.5
react 15.4.1
react-dom 15.4.1
react-redux 5.0.1
react-router 4.0.0-alpha.6
redux 3.5.2
redux-thunk 2.2.0
styled-components 1.3.1
babel-core 6.22.1
babel-eslint 7.0.0
babel-jest 18.0.0
babel-loader 6.2.9
babel-plugin-styled-components 0.0.3-0
babel-plugin-transform-runtime 6.22.0
babel-preset-es2015 6.22.0
babel-preset-react 6.22.0
babel-preset-stage-0 6.22.0
babel-runtime 6.22.0
eslint 3.14.0
eslint-config-airbnb 14.0.0
eslint-plugin-babel 4.0.1
eslint-plugin-import 2.2.0
eslint-plugin-jsx-a11y 3.0.2
eslint-plugin-react 6.8.0
html-webpack-plugin 2.24.1
jest 18.0.0
react-hot-loader 3.0.0-beta.6
react-test-renderer 15.4.1
webpack 2.2.0
webpack-dev-server 2.2.0-rc.0
Tools
If you have not already done so, move to Chrome and install react-developer-tools & redux-devtools
Create-React-App
If you don't care about the process or you don't want to play with your config try create-react-app
FAQs
The repository of the great react-tree-select
We found that react-tree-select demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 13 Feb 2017
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
Supply Chain Attack on Axios Pulls Malicious Dependency from npm
A supply chain attack on Axios introduced a malicious dependency, plain-crypto-js@4.2.1, published minutes earlier and absent from the project’s GitHub releases.
By Socket Research Team - Mar 31, 2026
Research
TeamPCP Compromises Telnyx Python SDK to Deliver Credential-Stealing Malware
Malicious versions of the Telnyx Python SDK on PyPI delivered credential-stealing malware via a multi-stage supply chain attack.
By Socket Research Team - Mar 27, 2026