npmpackage.info

Gathering detailed insights and metrics for @shopify/polaris-tokens

Other packages similar to @shopify/polaris-tokens

@shopify/polaris-icons

9.3.0

[![npm version](https://img.shields.io/npm/v/@shopify/polaris-icons.svg?style=flat)](https://www.npmjs.com/package/@shopify/polaris-icons)

@shopify/polaris

13.9.1

Shopify’s admin product component library

@shopify/polaris-viz-core

15.3.2

Core logic for Polaris Viz that is not platform specific

@shopify/polaris-viz

15.3.2

Shopify’s viz component library

Gathering detailed insights and metrics for @shopify/polaris-tokens

@shopify/polaris-tokens

Shopify’s design system to help us work together to build a great experience for all of our merchants.

9.4.0

5,822

NOASSERTION

TypeScript

13.62 kB

26,725,581 5.3

Installations

npm install @shopify/polaris-tokens

Pull Requests

Open

131

Total

7,829

Closed

1,923

Merged

5,775

Issues

Open

146

Total

4,821

Closed

4,675

Releases

822

@shopify/polaris@13.9.1

Published on 31 Oct 2024

@shopify/polaris@13.9.0

Published on 01 Aug 2024

@shopify/polaris@13.8.1

Published on 30 Jul 2024

@shopify/stylelint-polaris@16.0.5

Published on 30 Jul 2024

@shopify/polaris-tokens@9.4.0

Published on 30 Jul 2024

@shopify/polaris-migrator@1.0.5

Published on 30 Jul 2024

View all 822 releases

Developer

Shopify

Developer Guide

BETA

Module System

CommonJS, ESM

Min. Node Version

>=20.10.0

Typescript Support

Yes

Node Version

20.11.1

NPM Version

10.2.4 Statistics

5,822 Stars

10,482 Commits

1,174 Forks

509 Watching

860 Branches

7,158 Contributors

Updated on 26 Nov 2024

Bundle Size

138.19 kB

Minified

13.62 kB

Minified + Gzipped

Bundlephobia

Languages

TypeScript (63.49%)

MDX (14.91%)

HTML (11.58%)

CSS (4.76%)

SCSS (2.99%)

JavaScript (2.24%)

Handlebars (0.03%)

Total Downloads

Cumulative downloads

Total Downloads

26,725,581

Last day

-11.5%

15,847

Compared to previous day

Last week

-4.4%

88,366

Compared to previous week

Last month

1.3%

405,678

Compared to previous month

Last year

-14.1%

5,984,095

Compared to previous year

Daily Downloads

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

deepmerge

Versions

Polaris

Build. Contribute. Evolve. Shape the merchant experience for Shopify’s core product, the admin.

Status	Owner	Help
Active	@shopify/polaris	New issue

About this repo

The shopify/polaris repository is an intergalactic monorepo made up of NPM packages, VSCode extensions, and websites.

1polaris/
2├── documentation               # Documentation for working in the monorepo
3├── polaris-for-vscode          # VS Code extension for Polaris
4├── polaris-icons               # Icons for Polaris
5├── polaris-react               # Components for @shopify/polaris package
6├── polaris-tokens              # Design tokens for Polaris
7├── polaris.shopify.com         # Documentation website
8└── stylelint-polaris           # Rules for custom property usage and mainline coverage

Commands

Install dependencies and build workspaces

1pnpm install && pnpm build

Run a command

One workspace

Run commands from a selected workspace using turbo run <command> --filter=<workspace>... flag.

Command	Runs
`pnpm turbo run dev --filter=@shopify/polaris`	Open the react component storybook
`pnpm turbo run dev --filter=polaris.shopify.com`	Open polaris.shopify.com NextJS site

All workspaces

Run commands across all workspaces. This uses turbo run <command>.

Command	Runs
`pnpm changeset`	Adds a new changelog entry
`pnpm lint`	Lints all workspaces
`pnpm test`	Tests all workspaces
`pnpm type-check`	Build types and check for type errors
`pnpm clean`	Remove generated files
`pnpm format`	Format files with prettier

Contribute to this repo

Pull requests are welcome. See the contribution guidelines for more information.

Licenses

Source code is under a custom license based on MIT. The license restricts Polaris usage to applications that integrate or interoperate with Shopify software or services, with additional restrictions for external, stand-alone applications.

All icons and images are licensed under the Polaris Design Guidelines License Agreement

No vulnerabilities found.

10

Maintained

Determines if the project is "actively maintained".

10

Dangerous-Workflow

Determines if the project's GitHub Action workflows avoid dangerous patterns.

10

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

9

Code-Review

Determines if the project requires human code review before pull requests (aka merge requests) are merged.

9

License

Determines if the project has defined a license.

9

Security-Policy

Determines if the project has published a security policy.

0

CII-Best-Practices

Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.

0

Token-Permissions

Determines if the project's workflows follow the principle of least privilege.

0

Fuzzing

Determines if the project uses fuzzing.

0

Pinned-Dependencies

Determines if the project has declared and pinned the dependencies of its build process.

Reason

dependency not pinned by hash detected -- score normalized to 0

Details

Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/changelog.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/changelog.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/changelog.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/changelog.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/changelog.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/changelog.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-a11y-vrt.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/ci-a11y-vrt.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci-a11y-vrt.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/ci-a11y-vrt.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-a11y-vrt.yml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/ci-a11y-vrt.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-a11y-vrt.yml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/ci-a11y-vrt.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-a11y-vrt.yml:82: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/ci-a11y-vrt.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-a11y-vrt.yml:124: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/ci-a11y-vrt.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci-a11y-vrt.yml:129: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/ci-a11y-vrt.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-a11y-vrt.yml:132: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/ci-a11y-vrt.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-a11y-vrt.yml:138: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/ci-a11y-vrt.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci-a11y-vrt.yml:162: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/ci-a11y-vrt.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-lint.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/ci-lint.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci-lint.yml:30: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/ci-lint.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-lint.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/ci-lint.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-lint.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/ci-lint.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-test.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/ci-test.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci-test.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/ci-test.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-test.yml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/ci-test.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci-test.yml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/ci-test.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/cla.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/cla.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/deploy-polaris.shopify.com.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/deploy-polaris.shopify.com.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/major-version-check.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/major-version-check.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/migrator-comment.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/migrator-comment.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/non-committable.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/non-committable.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/non-committable.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/non-committable.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-vscode.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/release-vscode.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release-vscode.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/release-vscode.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-vscode.yml:32: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/release-vscode.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/release.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:30: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/release.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/release.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:46: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/release.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/snapit.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/snapit.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/snapit.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/snapit.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/snapit.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/snapit.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/stale.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/stale.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/untriaged-labeler.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/untriaged-labeler.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/untriaged-labeler.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/Shopify/polaris/untriaged-labeler.yml/main?enable=pin
Info: 0 out of 26 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 14 third-party GitHubAction dependencies pinned

0

SAST

Determines if the project uses static code analysis.

0

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

Score

5.3

/10

Last Scanned on 2024-07-01

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.

Learn More