Security News
The Hidden Blast Radius of the Axios Compromise
The Axios compromise shows how time-dependent dependency resolution makes exposure harder to detect and contain.
By Ahmad Nassri - Apr 01, 2026
New Research: Supply Chain Attack on Axios Pulls Malicious Dependency from npm.Details → →
story2frontify
Advanced tools
story2frontify
> This is currently alpha. Not every scenario has been looked into. If you find something, please raise an issue or PR.
Story2frontify
This is currently alpha. Not every scenario has been looked into. If you find something, please raise an issue or PR.
About
Convert your stories inside storybook to frontify's pattern library.
Installation
This can be installed globally or local to your repo.
Inside project:
npm i --save story2frontify
Globally:
npm i -g story2frontify
Usage
Pass the arguments:
- token
- project
- baseUrl
- localhost (default: http://localhost:9001/iframe.html)
- input (if you want to use static storybook instead)
Examples:
s2f --token xxxxxxxxxxxx --project xx --baseUrl https://PROJECT.frontify.com
s2f --token xxxxxxxxxxxx --project xx --baseUrl https://PROJECT.frontify.com --localhost http://localhost:8080/iframe.html
s2f --token xxxxxxxxxxxx --project xx --baseUrl https://PROJECT.frontify.com --input dist/demo/iframe.html
export token='xxxxxxxxxxxxx'
export project='xx'
export baseUrl='https://PROJECT.frontify.com'
s2f
export token='xxxxxxxxxxxxx'
export project='xx'
export baseUrl='https://PROJECT.frontify.com'
s2f --input dist/demo/iframe.html
issues
Each story needs to have a div wrapper around.
Currently to decide if your stories are an atom, molecules, organisms, page or template you need to have a a type attribute in the first (primary) story.
return ('<div type="atom"><button>Click me</button></div>');
FAQs
> This is currently alpha. Not every scenario has been looked into. If you find something, please raise an issue or PR.
We found that story2frontify demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 23 Nov 2018
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
Supply Chain Attack on Axios Pulls Malicious Dependency from npm
A supply chain attack on Axios introduced a malicious dependency, plain-crypto-js@4.2.1, published minutes earlier and absent from the project’s GitHub releases.
By Socket Research Team - Mar 31, 2026
Research
TeamPCP Compromises Telnyx Python SDK to Deliver Credential-Stealing Malware
Malicious versions of the Telnyx Python SDK on PyPI delivered credential-stealing malware via a multi-stage supply chain attack.
By Socket Research Team - Mar 27, 2026