🦹 Process components for antd4 & antd3 by alipay industry technology

Overview

Sunflower

Process Components for antd.

NPM version build status

English | 简体中文

Features

  • Support antd4, antd3
  • The relationship between antd components is expressed using react-hooks, and process components are used to simplify development
  • Process Components are extracted from the actual business processes and used immediately

Why

Usually, we use multiple components of antd to complete a process. For example, if you want to complete the function of "using Table to display the list after Form search", you need to deal with the relationship between "Form" and "Table", including query, pagination, etc.

Is there a way to simplify the maintenance of relationships between components? This is what sunflower is for. React-hooks that describe a scene are called "Process Components". Sunflower is a series of antd-based "Process Components".

The following is an example of a "Form & Table" scenario. You only need the following code to complete functions such as querying and paging. useFormTable is a react-hooks, which will return the props of the antd component, etc. You can give these props to the antd component to complete the connection between the components.

import React from 'react';
import { useFormTable } from 'sunflower-antd';
import { Input, Button, Table, Form } from 'antd';

export default props => {
  const { formProps, tableProps } = useFormTable({
    async search(values) {
      const res = await request(values);
      return res;
    },
  });

  return (
    <div>
      <Form {...formProps}>
        <Form.Item label="Username" name="username">
          <Input placeholder="Username" />
        </Form.Item>

        <Form.Item>
          <Button type="primary" htmlType="submit">
            Search
          </Button>
        </Form.Item>
      </Form>

      <Table
        columns={[
          {
            title: 'Username',
            dataIndex: 'username',
            key: 'username',
          },
        ]}
        {...tableProps}
      />
    </div>
  );
};

Document

Usage

$ npm i sunflower-antd --save
// or
$ yarn add sunflower-antd

Development

$ yarn
$ yarn start
Comments
  • useModelForm spec

    useModelForm spec

    import { Modal, Form } from 'antd';
    import { useModalForm } from 'sunflower-antd';
    
    function App(props) {
      const { modalProps, formProps, show, close, visible } = useModal({
        defaultVisible: false,  // default  default visible
        autoSubmitClose: true, // default   close modal after submit
        async submit() {},
      })
      return <>
          <Modal okText="submit" {...modalProps}>
            <Form {...formProps} />
          </Modal>
           
           modal visible: {visible}
           <a onClick={() => show()}>show modal</a>
           <a onClick={() => close()}>close modal</a>
      </>
    }
    
    export default App;
    

    click Modal "ok", will trigger submit, then close modal

    SPEC 
    opened by JIACHENG9 6
  • chore(deps-dev): bump @testing-library/react-hooks from 3.2.1 to 3.4.2

    chore(deps-dev): bump @testing-library/react-hooks from 3.2.1 to 3.4.2

    Bumps @testing-library/react-hooks from 3.2.1 to 3.4.2.

    Release notes

    Sourced from @testing-library/react-hooks's releases.

    v3.4.2

    Changes

    • Update minimum TS definition dependency (@types/testing-library__react-hooks) version (#453)

    v3.4.1

    Changes

    • The wait async util has been deprecated and replaced with waitFor (#408)
    • waitFor and waitForValueToChange async utils can now test their conditions periodically, even if the hook has not rerendered, using the new interval option (#408)
    • Bumped minimum type definition version (#414)
    • Docs have been updated to show how props can be passed to wrapper components (#414)

    v3.4.0

    ⚠️ DO NOT USE THIS VERSION ⚠️

    This version was accidentally published with some experimental code in the in the babel output directory and should not be used. IT has been deprecated in NPM and 3.4.1 has been published with the correct output.

    V3.3.0

    Changes

    • wrapper component can now access the initialProps and new props from rerender calls when creating providers (#322, #381)
    • cleanup functionality has been updated to support mocha/esm environments (#375, #377)
    • dependency updates (thanks @renovate-bot)
    Commits
    • 90b8c5c 3.4.2
    • ce5e3ff Bump package-lock
    • daef84a Merge pull request #458 from testing-library/renovate/eslint-7.x
    • bb02993 chore(deps): update dependency eslint to v7.10.0
    • 11351a5 Merge pull request #457 from testing-library/renovate/eslint-config-prettier-6.x
    • b6062d3 chore(deps): update dependency eslint-config-prettier to v6.12.0
    • 9ba87d3 Merge pull request #454 from testing-library/renovate/all-contributors-cli-6.x
    • d366c94 chore(deps): update dependency all-contributors-cli to v6.17.4
    • e519ff3 Merge pull request #453 from cliffzhaobupt/pr/update-types-dependency-version
    • 625b2fb chore: update @types/testing-library__react-hooks dependency version
    • Additional commits viewable in compare view

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
    • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

    Additionally, you can set the following in your Dependabot dashboard:

    • Update frequency (including time of day and day of week)
    • Pull request limits (per update run and/or open at any time)
    • Automerge options (never/patch/minor, and dev/runtime dependencies)
    • Out-of-range updates (receive only lockfile updates, if desired)
    • Security updates (receive only security updates, if desired)
    dependencies 
    opened by dependabot-preview[bot] 3
  • chore(deps): bump moment from 2.26.0 to 2.29.2

    chore(deps): bump moment from 2.26.0 to 2.29.2

    Bumps moment from 2.26.0 to 2.29.2.

    Changelog

    Sourced from moment's changelog.

    2.29.2 See full changelog

    • Release Apr 3 2022

    Address https://github.com/advisories/GHSA-8hfj-j24r-96c4

    2.29.1 See full changelog

    • Release Oct 6, 2020

    Updated deprecation message, bugfix in hi locale

    2.29.0 See full changelog

    • Release Sept 22, 2020

    New locales (es-mx, bn-bd). Minor bugfixes and locale improvements. More tests. Moment is in maintenance mode. Read more at this link: https://momentjs.com/docs/#/-project-status/

    2.28.0 See full changelog

    • Release Sept 13, 2020

    Fix bug where .format() modifies original instance, and locale updates

    2.27.0 See full changelog

    • Release June 18, 2020

    Added Turkmen locale, other locale improvements, slight TypeScript fixes

    Commits

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies 
    opened by dependabot[bot] 2
  • chore(deps): bump url-parse from 1.4.7 to 1.5.7

    chore(deps): bump url-parse from 1.4.7 to 1.5.7

    Bumps url-parse from 1.4.7 to 1.5.7.

    Commits
    • 8b3f5f2 1.5.7
    • ef45a13 [fix] Readd the empty userinfo to url.href (#226)
    • 88df234 [doc] Add soft deprecation notice
    • 78e9f2f [security] Fix nits
    • e6fa434 [security] Add credits for incorrect handling of userinfo vulnerability
    • 4c9fa23 1.5.6
    • 7b0b8a6 Merge pull request #223 from unshiftio/fix/at-sign-handling-in-userinfo
    • e4a5807 1.5.5
    • 193b44b [minor] Simplify whitespace regex
    • 319851b [fix] Remove CR, HT, and LF
    • Additional commits viewable in compare view

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies 
    opened by dependabot[bot] 2
  • chore(deps): bump follow-redirects from 1.13.0 to 1.14.7

    chore(deps): bump follow-redirects from 1.13.0 to 1.14.7

    Bumps follow-redirects from 1.13.0 to 1.14.7.

    Commits
    • 2ede36d Release version 1.14.7 of the npm package.
    • 8b347cb Drop Cookie header across domains.
    • 6f5029a Release version 1.14.6 of the npm package.
    • af706be Ignore null headers.
    • d01ab7a Release version 1.14.5 of the npm package.
    • 40052ea Make compatible with Node 17.
    • 86f7572 Fix: clear internal timer on request abort to avoid leakage
    • 2e1eaf0 Keep Authorization header on subdomain redirects.
    • 2ad9e82 Carry over Host header on relative redirects (#172)
    • 77e2a58 Release version 1.14.4 of the npm package.
    • Additional commits viewable in compare view

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies 
    opened by dependabot[bot] 2
  • chore(deps-dev): bump typescript from 3.8.3 to 4.1.5

    chore(deps-dev): bump typescript from 3.8.3 to 4.1.5

    Bumps typescript from 3.8.3 to 4.1.5.

    Release notes

    Sourced from typescript's releases.

    TypeScript 4.1.5

    This release contains a fix for an issue when language service plugins have no specified name.

    TypeScript 4.1.4

    This release contains fixes for a security risk involving language service plugin loading. More details are available here.

    TypeScript 4.1.3

    For release notes, check out the release announcement.

    For the complete list of fixed issues, check out the

    Downloads are available on:

    TypeScript 4.1

    For release notes, check out the release announcement.

    For the complete list of fixed issues, check out the

    Downloads are available on:

    TypeScript 4.1 RC

    For release notes, check out the release announcement.

    For the complete list of fixed issues, check out the

    Downloads are available on:

    ... (truncated)

    Commits

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
    • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

    Additionally, you can set the following in your Dependabot dashboard:

    • Update frequency (including time of day and day of week)
    • Pull request limits (per update run and/or open at any time)
    • Automerge options (never/patch/minor, and dev/runtime dependencies)
    • Out-of-range updates (receive only lockfile updates, if desired)
    • Security updates (receive only security updates, if desired)
    dependencies 
    opened by dependabot-preview[bot] 2
  • chore(deps-dev): bump @testing-library/react-hooks from 3.2.1 to 5.0.3

    chore(deps-dev): bump @testing-library/react-hooks from 3.2.1 to 5.0.3

    Bumps @testing-library/react-hooks from 3.2.1 to 5.0.3.

    Release notes

    Sourced from @testing-library/react-hooks's releases.

    v5.0.3

    5.0.3 (2021-01-24)

    Bug Fixes

    • fixed potential error when hook suspends and error is accessed (1a0c4d3)

    v5.0.2

    5.0.2 (2021-01-22)

    Bug Fixes

    • only suppress console.error for non-pure imports (#549) (804d9ac), closes #546

    Code Refactoring

    • update default renderer's error message. (#547) (83b85c2)

    Note: due to a technical glitch, there was no v5.0.1 release.

    v5.0.0

    5.0.0 (2021-01-13)

    Bug Fixes

    • constrain TOptions to be an object instead of an empty interface (3813b88)
    • display returned function names correctly in stack traces (#528) (a82d5ef)
    • fixed potential error when hook suspends and current result is accessed (dc21e59)
    • include render utils in RenderHook type (ca32bce)
    • ReactHooksRenderer renderHook was not expecting arguments (bb870e0)
    • stop appending container elements to document body (bab38d9)
    • Type for options in autodetected renderer was incorrectly inferring any passed type (#527) (4786242)
    • use actual line break in error message when auto-detect fails (a3fd0e2)

    Code Refactoring

    Features

    • react-dom and SSR compatible rendering (a25993f)
    • use error boundary to capture useEffect errors (#539) (b81fd04), closes #308

    ... (truncated)

    Commits
    • 1a0c4d3 fix: fixed potential error when hook suspends and error is accessed
    • 3b45b4d chore: update the issue template to ask for react-dom version as well
    • 804d9ac fix: only suppress console.error for non-pure imports (#549)
    • 9af1343 docs: use vanity URL for Discord
    • 4e5a902 chore(deps-dev): bump kcd-scripts from 7.5.4 to 7.5.5 (#551)
    • a9ae74e docs: fix links in SSR docs
    • b87c30c docs: fix wording in Renderer docs around bundlers
    • 83b85c2 refactor: update default renderer's error message. (#547)
    • d980fc0 chore(deps-dev): bump eslint from 7.17.0 to 7.18.0 (#545)
    • 6335c4e docs: removed extra header in SSR docs
    • Additional commits viewable in compare view
    Maintainer changes

    This version was pushed to npm by testing-library-bot, a new releaser for @testing-library/react-hooks since your current version.


    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
    • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

    Additionally, you can set the following in your Dependabot dashboard:

    • Update frequency (including time of day and day of week)
    • Pull request limits (per update run and/or open at any time)
    • Automerge options (never/patch/minor, and dev/runtime dependencies)
    • Out-of-range updates (receive only lockfile updates, if desired)
    • Security updates (receive only security updates, if desired)
    dependencies 
    opened by dependabot-preview[bot] 2
  • chore(deps-dev): bump @umijs/test from 3.2.10 to 3.3.7

    chore(deps-dev): bump @umijs/test from 3.2.10 to 3.3.7

    Bumps @umijs/test from 3.2.10 to 3.3.7.

    Release notes

    Sourced from @umijs/test's releases.

    v3.3.7

    • fix: process exit code for SIGINT (c-c) (#6047) 62d708fa
    • fix: mock with too much files modification will block server (#6040) 3a181601
    • chore: use react-jsx for create-app&#39;s template (#6044) 510e6f4c

    https://github.com/umijs/umi/compare/v3.3.6...v3.3.7

    [email protected]

    • feat: fix the only option of babel-register is invalidated for symbolic link file (#6031) a5788473
    • feat: show full webpack config with util.inspect (#6008) 2936af4e
    • feat: support config.dynamicImportSyntax for syntax only (#6014) 3e0aaaca
    • feat: expose routes in IRouteComponentProps (#6013) 645fac7f
    • feat: compatible with react 17 and enable fastRefresh for boilerplate (#6012) dfe5717c
    • fix: css sourcemap don&#39;t work (#6024) 6325106a
    • chore: upgrade joi2types (#6004) af2e3f19
    • chore: remove --max_old_space_size from ci (#6011) a8479c4e
    • chore: update yarn.lock (#6010) de6f76e4
    • chore: fix middleware typo (#6007) 90fc5d01

    https://github.com/umijs/umi/compare/v3.3.5...v3.3.6

    [email protected]

    • fix: prettier comment error (#6002) 9c0bca20
    • chore: ie 11 test case (#5999) e52abed3
    • chore: upgrade cheerio types (#5975) e24a2bb7
    • chore: update github workflows 6319350f
    • chore: update ISSUE TEMPLATEs again 5038d0cf
    • chore: update ISSUE TEMPLATEs b003a3a7
    • chore: update issue template 2b485acd
    • docs: add immer.enableES5 for plugin-dva 82a4cb51
    • docs: add bash prefix $ back (#5979) 1668478c
    • docs: dynamicImport docs (#5976) e4123fc6

    https://github.com/umijs/umi/compare/v3.3.4...v3.3.5

    v3.3.4

    • feat: support extraBabelIncludes (#5942) e163aab2
    • feat: add test and docs for umi webpack in production (#5920) 3a9a1dce
    • fix: cssModulesTypescriptLoader.mode should be optional (#5917) 67fd2e07
    • fix(ssr): getInitialProps should has history in csr (#5898) fceb6e5e
    • fix(ssr): Mode should be &#39;stream&#39; or &#39;string&#39; (#5875) 22b8a1b5
    • fix(types): export missing types (#5893) 2046d3be
    • docs: update assets css md 85ce65ad
    • Update plugin-access.zh-CN.md (#5938) f91239fe
    • docs: Translate assets-css.md to english (#5934) 5b63f3c8
    • style(template): uniform &#39;typings.d.ts&#39; code style (#5912) 0a803422
    • docs: add badge for bundlephobia 9116e168
    • docs: update wechat&#39;s qrcode 6b0fcc77
    • docs: update ssr.zh-CN.md (#5889) e4670e0d
    • ci: create issue replay 129536e7

    ... (truncated)

    Commits
    • 0dd15c0 release: v3.3.7
    • 62d708f fix: process exit code for SIGINT (c-c) (#6047)
    • 510e6f4 chore: use react-jsx for create-app's template (#6044)
    • 3a18160 fix: mock with too much files modification will block server (#6040)
    • 874dcd0 release: v3.3.6
    • af2e3f1 chore: upgrade joi2types (#6004)
    • 6325106 fix: css sourcemap don't work (#6024)
    • a578847 feat: fix the only option of babel-register is invalidated for symbolic link ...
    • 3e0aaac feat: support config.dynamicImportSyntax for syntax only (#6014)
    • 645fac7 feat: expose routes in IRouteComponentProps (#6013)
    • Additional commits viewable in compare view

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
    • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

    Additionally, you can set the following in your Dependabot dashboard:

    • Update frequency (including time of day and day of week)
    • Pull request limits (per update run and/or open at any time)
    • Automerge options (never/patch/minor, and dev/runtime dependencies)
    • Out-of-range updates (receive only lockfile updates, if desired)
    • Security updates (receive only security updates, if desired)
    dependencies 
    opened by dependabot-preview[bot] 2
  • chore(deps-dev): bump dumi from 1.0.30 to 1.1.0

    chore(deps-dev): bump dumi from 1.0.30 to 1.1.0

    Bumps dumi from 1.0.30 to 1.1.0.

    Release notes

    Sourced from dumi's releases.

    v1.1.0

    dumi 1.1 released! Includes a lot of new feature, improvements & bug fixes, you can check out the full-new website to lean more: https://d.umijs.org

    New

    • UI assets meta: support to generate meta data from all UI assets via dumi assets command, such as component, demo, API & etc.
    • Theme system: we can build our own theme now, or override part of default theme, or extend Markdown components
    • Mobile component library: support to develop mobile component library via dumi-theme-mobile
    • Component API auto-gen: dumi can generate component API for us, via TypeScript definitions & annotations
    • Umi integrated mode: we can mange components within project easily

    Features

    Improvements

    • Upgrade full-remarkjs system to micromark core parser: a new, small, complete, and CommonMark compliant low-level markdown parser
    • Generate 404.html by default, try to support to render dynamic route on some sites which not support dynamic route
    • Improve external demo url generate logic, use demo filename first
    • Cannot identify private lerna packages, #339
    • Use TypeScript offcial playground instead of sylvanas to transform tsx, this can bring a 1.5x speedup when dumi start
    • Use rc-tabs for source code panel in default theme, #278
    • Keep scroll position after browser navigated
    • Optimize performance of external demo watch logic, HMR 2x faster, 646dd4a
    • Add cache for demo dependency collect logic, HMR 10x faster, b144e36

    Fixed

    • Local package resolve bug if child dependency has the old version of some local package
    • Anchor link position bug if there has offsetParent
    • validateDOMNesting errors from navbar in default theme, #390 #391
    • Scrollbar cannot drag bug for sidemenu in doc mode, #376
    • Dynamic import maybe blocked by adblock
    • Hyperlink lost bug for demo description in previewer

    v1.1.0-rc.8

    Features

    • Support to configure hyperlink for feature item in homepage, #440, usage
    • Support to collect slugs from embed Markdown file

    Improvements

    • Avoid unnecessary re-render when click page, #446
    • Use content title for the fallback README homepage, #408 #443
    • Clean React DOM warning for code element, #418 #427
    • Add exclude for scaffold, #433

    Fixed

    Commits

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
    • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

    Additionally, you can set the following in your Dependabot dashboard:

    • Update frequency (including time of day and day of week)
    • Pull request limits (per update run and/or open at any time)
    • Automerge options (never/patch/minor, and dev/runtime dependencies)
    • Out-of-range updates (receive only lockfile updates, if desired)
    • Security updates (receive only security updates, if desired)
    dependencies 
    opened by dependabot-preview[bot] 2
  • chore(deps-dev): bump @umijs/test from 3.2.10 to 3.3.2

    chore(deps-dev): bump @umijs/test from 3.2.10 to 3.3.2

    Bumps @umijs/test from 3.2.10 to 3.3.2.

    Release notes

    Sourced from @umijs/test's releases.

    [email protected]

    • fix: css modules esModule error (#5820) 8276fa14
    • chore: upgrade mini-css-extract-plugin (#5818) 0c842142
    • chore: update the tpl of create app (#5810) 86aff59b
    • Update runtime-config.zh-CN.md (#5812) b4adb6dd

    https://github.com/umijs/umi/compare/v3.3.1...v3.3.2

    [email protected]

    • fix(webpack): upgrade plugins support webpack 5 (#5794) ac3d2b36
    • chore: export proxy middleware from umi-server (#5793) 457ecfb1
    • chore: move babel-plugin-auto-css-modules deps to devDeps (#5764) a9cbc89c
    • fix: config copy type (#5795) 5a776625

    https://github.com/umijs/umi/compare/v3.3.0...v3.3.1

    [email protected]

    • feat: fast refresh (#5682) f45c5301
    • chore: using mini-css-extract-plugin (#5701) 8ea4f65e
    • chore: print error when dynamic load component failed (#5705) 0958c6f8
    • refactor(dev): access env when dev related method be called (#5756) 435403a6
    • chore: upgrade father-build 1.19 (#5695) 65aa3bc5
    • chore: skip workflows via paths-ignore (#5770) f4db7793
    • chore: box-orient css removed (#5776) 4060c03c
    • chore: now deploy (#5761) 284c04c9
    • chore: now (#5760) 7f5f5781
    • docs: monaco-editor (#5769) 7676ace1
    • docs: use html entities to avoid deploy error (#5758) 19c68fad
    • docs: 修改一处(config)描述歧义,修改一处(faq)描述错误 (#5775) 32369727
    • docs: react 17 (#5753) 0aeff591
    • docs: the spelling mistake (#5777) c5c766dc
    • docs: update plugin-dva.zh-CN.md (#5736) dde02999
    • docs: cannot assign exports faq (#5738) de805079
    • docs: publicPath doc (#5709) fd3eaf5c
    • docs: splitChunks using minimize will oom (#5733) 11816938
    • docs: 物理缓存 => 持久缓存 (#5730) 6a8c65a8
    • docs(qiankun): 新增运行时配置微应用路由文档 (#5725) b0fe789b
    • docs: 文字错误 (#5782) 1ab1812c

    https://github.com/umijs/umi/compare/v3.2.28...v3.3.0

    [email protected]

    • feat: support react 17 (#5690) a3d4d79e
    • fix: terser build OOM (#5665) 1a9f3b70
    • fix(dynamicImport): dynamicImport.loading path parse error in windows os (#5545) 99c6e8c1
    • fix: IGetInitialProps match.params (#5672) 347d6c00
    • chore: upgrade terser plugin (#5683) 431a1874
    • chore: upgrade fork-ts plugin version (#5614) 10ba6f3b
    • chore: upgrade father-build (#5674) 27bf8e58
    • Added &#39;routes&#39; to routing arrays (#5635) a12a81b5
    Commits

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
    • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

    Additionally, you can set the following in your Dependabot dashboard:

    • Update frequency (including time of day and day of week)
    • Pull request limits (per update run and/or open at any time)
    • Automerge options (never/patch/minor, and dev/runtime dependencies)
    • Out-of-range updates (receive only lockfile updates, if desired)
    • Security updates (receive only security updates, if desired)
    dependencies 
    opened by dependabot-preview[bot] 2
  • chore(deps): [security] bump ini from 1.3.5 to 1.3.7

    chore(deps): [security] bump ini from 1.3.5 to 1.3.7

    Bumps ini from 1.3.5 to 1.3.7. This update includes a security fix.

    Vulnerabilities fixed

    Sourced from The GitHub Security Advisory Database.

    Prototype Pollution

    Overview

    The ini npm package before version 1.3.6 has a Prototype Pollution vulnerability.

    If an attacker submits a malicious INI file to an application that parses it with ini.parse, they will pollute the prototype on the application. This can be exploited further depending on the context.

    Patches

    This has been patched in 1.3.6

    Steps to reproduce

    payload.ini

    [__proto__]
    polluted = "polluted"
    

    poc.js:

    var fs = require('fs')
    </tr></table> ... (truncated)
    

    Affected versions: < 1.3.6

    Commits
    • c74c8af 1.3.7
    • 024b8b5 update deps, add linting
    • 032fbaf Use Object.create(null) to avoid default object property hazards
    • 2da9039 1.3.6
    • cfea636 better git push script, before publish instead of after
    • 56d2805 do not allow invalid hazardous string as section name
    • See full diff in compare view
    Maintainer changes

    This version was pushed to npm by isaacs, a new releaser for ini since your current version.


    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
    • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

    Additionally, you can set the following in your Dependabot dashboard:

    • Update frequency (including time of day and day of week)
    • Pull request limits (per update run and/or open at any time)
    • Automerge options (never/patch/minor, and dev/runtime dependencies)
    • Out-of-range updates (receive only lockfile updates, if desired)
    • Security updates (receive only security updates, if desired)
    dependencies security 
    opened by dependabot-preview[bot] 2
  • chore(deps): bump terser from 4.6.7 to 4.8.1

    chore(deps): bump terser from 4.6.7 to 4.8.1

    Bumps terser from 4.6.7 to 4.8.1.

    Changelog

    Sourced from terser's changelog.

    v4.8.1 (backport)

    • Security fix for RegExps that should not be evaluated (regexp DDOS)

    v4.8.0

    • Support for numeric separators (million = 1_000_000) was added.
    • Assigning properties to a class is now assumed to be pure.
    • Fixed bug where yield wasn't considered a valid property key in generators.

    v4.7.0

    • A bug was fixed where an arrow function would have the wrong size
    • arguments object is now considered safe to retrieve properties from (useful for length, or 0) even when pure_getters is not set.
    • Fixed erroneous const declarations without value (which is invalid) in some corner cases when using collapse_vars.

    v4.6.13

    • Fixed issue where ES5 object properties were being turned into ES6 object properties due to more lax unicode rules.
    • Fixed parsing of BigInt with lowercase e in them.

    v4.6.12

    • Fixed subtree comparison code, making it see that [1,[2, 3]] is different from [1, 2, [3]]
    • Printing of unicode identifiers has been improved

    v4.6.11

    • Read unused classes' properties and method keys, to figure out if they use other variables.
    • Prevent inlining into block scopes when there are name collisions
    • Functions are no longer inlined into parameter defaults, because they live in their own special scope.
    • When inlining identity functions, take into account the fact they may be used to drop this in function calls.
    • Nullish coalescing operator (x ?? y), plus basic optimization for it.
    • Template literals in binary expressions such as + have been further optimized

    v4.6.10

    • Do not use reduce_vars when classes are present

    v4.6.9

    • Check if block scopes actually exist in blocks

    v4.6.8

    • Take into account "executed bits" of classes like static properties or computed keys, when checking if a class evaluation might throw or have side effects.
    Commits

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies 
    opened by dependabot[bot] 0
  • chore(deps): bump moment from 2.26.0 to 2.29.4

    chore(deps): bump moment from 2.26.0 to 2.29.4

    Bumps moment from 2.26.0 to 2.29.4.

    Changelog

    Sourced from moment's changelog.

    2.29.4

    • Release Jul 6, 2022
      • #6015 [bugfix] Fix ReDoS in preprocessRFC2822 regex

    2.29.3 Full changelog

    • Release Apr 17, 2022
      • #5995 [bugfix] Remove const usage
      • #5990 misc: fix advisory link

    2.29.2 See full changelog

    • Release Apr 3 2022

    Address https://github.com/moment/moment/security/advisories/GHSA-8hfj-j24r-96c4

    2.29.1 See full changelog

    • Release Oct 6, 2020

    Updated deprecation message, bugfix in hi locale

    2.29.0 See full changelog

    • Release Sept 22, 2020

    New locales (es-mx, bn-bd). Minor bugfixes and locale improvements. More tests. Moment is in maintenance mode. Read more at this link: https://momentjs.com/docs/#/-project-status/

    2.28.0 See full changelog

    • Release Sept 13, 2020

    Fix bug where .format() modifies original instance, and locale updates

    2.27.0 See full changelog

    • Release June 18, 2020

    Added Turkmen locale, other locale improvements, slight TypeScript fixes

    Commits

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies 
    opened by dependabot[bot] 0
  • chore(deps): bump eventsource from 1.0.7 to 1.1.1

    chore(deps): bump eventsource from 1.0.7 to 1.1.1

    Bumps eventsource from 1.0.7 to 1.1.1.

    Changelog

    Sourced from eventsource's changelog.

    1.1.1

    • Do not include authorization and cookie headers on redirect to different origin (#273 Espen Hovlandsdal)

    1.1.0

    • Improve performance for large messages across many chunks (#130 Trent Willis)
    • Add createConnection option for http or https requests (#120 Vasily Lavrov)
    • Support HTTP 302 redirects (#116 Ryan Bonte)
    • Prevent sequential errors from attempting multiple reconnections (#125 David Patty)
    • Add new to correct test (#111 Stéphane Alnet)
    • Fix reconnections attempts now happen more than once (#136 Icy Fish)
    Commits
    • aa7a408 1.1.1
    • 56d489e chore: rebuild polyfill
    • 4a951e5 docs: update history for 1.1.1
    • f9f6416 fix: strip sensitive headers on redirect to different origin
    • 9dd0687 1.1.0
    • 49497ba Update history for 1.1.0 (#146)
    • 3a38537 Update history for #136
    • 46fe04e Merge pull request #136 from icy-fish/master
    • 9a4190f Fix issue: reconnection only happends for 1 time after connection drops
    • 61e1b19 test: destroy both proxied request and response on close
    • Additional commits viewable in compare view

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies 
    opened by dependabot[bot] 0
  • chore(deps): bump async from 2.6.3 to 2.6.4

    chore(deps): bump async from 2.6.3 to 2.6.4

    Bumps async from 2.6.3 to 2.6.4.

    Changelog

    Sourced from async's changelog.

    v2.6.4

    • Fix potential prototype pollution exploit (#1828)
    Commits
    Maintainer changes

    This version was pushed to npm by hargasinski, a new releaser for async since your current version.


    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies 
    opened by dependabot[bot] 0
  • chore(deps): bump url-parse from 1.4.7 to 1.5.10

    chore(deps): bump url-parse from 1.4.7 to 1.5.10

    Bumps url-parse from 1.4.7 to 1.5.10.

    Commits
    • 8cd4c6c 1.5.10
    • ce7a01f [fix] Improve handling of empty port
    • 0071490 [doc] Update JSDoc comment
    • a7044e3 [minor] Use more descriptive variable name
    • d547792 [security] Add credits for CVE-2022-0691
    • ad23357 1.5.9
    • 0e3fb54 [fix] Strip all control characters from the beginning of the URL
    • 61864a8 [security] Add credits for CVE-2022-0686
    • bb0104d 1.5.8
    • d5c6479 [fix] Handle the case where the port is specified but empty
    • Additional commits viewable in compare view

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies 
    opened by dependabot[bot] 1
  • chore(deps): bump prismjs from 1.20.0 to 1.27.0

    chore(deps): bump prismjs from 1.20.0 to 1.27.0

    Bumps prismjs from 1.20.0 to 1.27.0.

    Release notes

    Sourced from prismjs's releases.

    v1.27.0

    Release 1.27.0

    v1.26.0

    Release 1.26.0

    v1.25.0

    Release 1.25.0

    v1.24.1

    Release 1.24.1

    v1.24.0

    Release 1.24.0

    v1.23.0

    Release 1.23.0

    v1.22.0

    Release 1.22.0

    v1.21.0

    Release 1.21.0

    Changelog

    Sourced from prismjs's changelog.

    1.27.0 (2022-02-17)

    New components

    Updated components

    Updated plugins

    Other

    • Core
      • Added better error message for missing grammars (#3311) 2cc4660b

    1.26.0 (2022-01-06)

    New components

    Updated components

    ... (truncated)

    Commits
    Maintainer changes

    This version was pushed to npm by rundevelopment, a new releaser for prismjs since your current version.


    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies 
    opened by dependabot[bot] 1
Owner
Ant Design Team
A UI Design Language
Ant Design Team
React hook to handle any async operation in React components, and prevent race conditions

React-async-hook This library only does one small thing, and does it well. Don't expect it to grow in size, because it is feature complete: Handle fet

Sébastien Lorber 1.1k Sep 20, 2022
😎 📏 React hook to measure an element's size and handle responsive components.

REACT COOL DIMENSIONS A React hook that measure an element's size and handle responsive components with highly-performant way, using ResizeObserver. T

Welly 823 Sep 23, 2022
React hook for using keyboard shortcuts in components.

react-hotkeys-hook React hook for using keyboard shortcuts in components. This is a hook version for the hotkeys package. Documentation and live examp

Johannes Klauss 1.2k Sep 26, 2022
Hooks api for react-powerplug components

react-powerhooks ⚠️ Warning: hooks are not part of a stable React release yet, so use this library only for experiments Demo Install yarn add react-po

Kalcifer 99 Jul 30, 2022
An experimental hook that lets you have multiple components using multiple synced states using no context provider

Resynced (experimental) ❤️ Motivation This is an experimental hook that lets you have multiple components using multiple synced states using no contex

Pedro Nasser 19 May 9, 2021
Web. Components. 😂

The Platform Web API's turned into React Hooks and Suspense-friendly React components. #useThePlatform Install Note: React 16.8+ is required for Hooks

Jared Palmer 4.4k Sep 27, 2022
React hook that does a fetch and aborts when the components is unloaded or a different request is made

use-abortable-fetch React hook that does a fetch and aborts when the components is unloaded or a new fetch request is started. Installation npm instal

Maurice de Beijer 152 Aug 24, 2022
Essential React custom hooks ⚓ to super charge your components!

Essential React custom hooks ⚓ to super charge your components!

Bhargav Ponnapalli 2.6k Sep 26, 2022
React Native APIs turned into React Hooks for use in functional React components

React Native Hooks React Native APIs turned into React Hooks allowing you to access asynchronous APIs directly in your functional components. Note: Yo

React Native Community 2.9k Sep 22, 2022
💎 A collection of lightweight React components and hooks to build diagrams with ease 💎

A tiny collection of lightweight React components for building diagrams with ease ?? Live playground here ?? ?? Why? Javascript diagramming libraries

Antonio Rù 2.5k Sep 30, 2022
Responsive components and Hooks ⚒ for your favorite framework ⚛️

?? ReactPonsive Responsive components and Hooks ⚒ for your favorite framework ⚛️ http://jmlweb.github.io/reactponsive Principles Installation Requirem

José Manuel Lucas 12 Jul 23, 2022
🔥 A collection of beautiful and (hopefully) useful React hooks to speed-up your components and hooks development 🔥

A collection of beautiful (and hopefully useful) React hooks to speed-up your components and hooks development ?? Live playground here ?? ???? English

Antonio Rù 6k Sep 22, 2022
A new way of Function Components without Hooks

React Split Components (RiC) A new way of Function Components without Hooks

南小北 102 Sep 19, 2022
React.js: Hooks, Contextos, Components, Sass e boas práticas

This project was bootstrapped with Create React App. Available Scripts In the project directory, you can run: npm start Runs the app in the developmen

Luís Gabriel Marchió Batista 1 Jan 6, 2022
Recoil provides a fast and flexible way to share state across components with React Hooks Api.

umi-plugin-recoil A plugin for [email protected] to help you set RecoilRoot. What is Recoil? Recoil provides a fast and flexible way to share state across com

肥康 3 Jul 19, 2022
This is a solution to the Sunnyside agency landing page challenge on Frontend Mentor using React.js, styled-components.

Getting Started with Create React App This project was bootstrapped with Create React App. Available Scripts In the project directory, you can run: np

Jomavi 1 Dec 6, 2021
Simple atomic state that can be updated outside of React components.

Simple Atom Simple atomic state that can be updated outside React. Why simple-atom? Update state outside of a React component. No need for React Conte

James Berry 10 Aug 31, 2022
Simple atomic state that can be updated outside of React components.

Simple Atom Simple atomic state that can be updated outside React. Why simple-atom? Update state outside of a React component. No need for React Conte

James Berry 10 Aug 31, 2022
React hooks and components for large data sets scrolling

React Scroller A set of hooks, components and utilities for scrolling large datasets. Standalone components could be used as well as lower level hooks

Vadim Sartakov 0 Mar 31, 2022