Security News
Opengrep Emerges as Open Source Alternative Amid Semgrep Licensing Controversy
Opengrep forks Semgrep to preserve open source SAST in response to controversial licensing changes.
By Sarah Gooding - Jan 28, 2025
New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More →
react-unplug
Advanced tools
react-unplug
Promise-wrapper to manage the state of react components. Inspired by this article from React blog.
Installation
# npm
npm install react-unplug
# yarn
yarn add react-unplug
Overview
For React components, that use fetch to update the state, unmounting can lead to the following issue:
setState(…): Can only update a mounted or mounting component. This usually means you called setState() on an unmounted component. This is a no-op
The correct way to fix this issue, according to the article, is to cancel any callbacks in componentWillUnmount, prior to unmounting.
React-unplug uses the idea of socket–plug–unplug to prevent setting the state of a react component once it is told to do so.
Usage
Let's say you have a react component that fetches a resource and once it's successfully done, fetches related resources. Usually you want to do that in componentDidMount.
componentDidMount() {
fetchResource(this.props.url)
.then(item => {
this.setState({item})
fetchRelatedResources(item)
.then(relatedItems => {
this.setState({relatedItems});
})
.catch(error => { /* handle */ })
})
.catch(error => { /* handle */ });
}
If a user's actions cause the component unmounting or rerendering with different props, there is a chance, that setState will try to set state of an unmounted component. In this case react will give us very nice warning that we might want to get rid off.
To do so, let's plug our promises to the socket. This gives us a way to unplug them when we need, preventing a call to setState.
import unplug from 'react-unplug';
Let's update our component with wired promises:
socket = unplug.socket();
componentDidMount() {
this.socket.plug(wire => wire(
fetchResource(this.props.url),
item => {
this.setState({item});
wire(
fetchRelatedResources(item),
this.setState({relatedItems}),
error => { /* handle */ }
)
},
error => { /* handle */ }
));
}
componentWillUnmount() {
this.socket.unplug();
}
Done! Wired promises' onFulfilled, onRejected handlers won't be called once the socket is unplugged.
Running the tests
# with npm
npm test
# with yarn
yarn test
Contributing
Please read CONTRIBUTING.md for details on our code of conduct, and the process for submitting pull requests to us.
Versioning
SemVer is used for versioning. For the versions available, see the tags on this repository.
License
This project is licensed under the MIT License - see the LICENSE file for details.
Acknowledgments
Keywords
FAQs
Promise-wrapper to manage the state of react components
The npm package react-unplug receives a total of 4 weekly downloads. As such, react-unplug popularity was classified as not popular.
We found that react-unplug demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 05 Aug 2017
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
Node.js EOL Versions CVE Dubbed the "Worst CVE of the Year" by Security Experts
Critics call the Node.js EOL CVE a misuse of the system, sparking debate over CVE standards and the growing noise in vulnerability databases.
By Sarah Gooding - Jan 24, 2025
Security News
cURL Project and Go Security Teams Reject CVSS as Broken
cURL and Go security teams are publicly rejecting CVSS as flawed for assessing vulnerabilities and are calling for more accurate, context-aware approaches.
By Sarah Gooding - Jan 24, 2025