npmpackage.info

@theme-ui/preset-base

Build consistent, themeable React apps based on constraint-based design principles

0.17.1

5,322

MIT

TypeScript

710.00 B

3,525,595 3.4

Installations

npm install @theme-ui/preset-base

Developer Guide

BETA

Typescript

Yes

Module System

CommonJS

Node Version

20.18.0

NPM Version

10.8.2 Pull Requests

Open

18

Total

1,628

Closed

372

Merged

1,238

Issues

Open

49

Total

664

Closed

615

Releases

174

v0.17.2-develop.0

Published on 18 Dec 2024

v0.17.1

Published on 24 Oct 2024

v0.17.1-develop.0

Published on 24 Oct 2024

v0.17.0

Published on 18 Oct 2024

v0.17.0-develop.1

Published on 18 Oct 2024

v0.17.0-develop.0

Published on 18 Oct 2024

View all 174 releases

Contributors

138

View all 138 contributors

Languages

TypeScript

MDX

JavaScript

HTML

Shell

CSS

TypeScript (59.49%)

MDX (28.12%)

JavaScript (11.13%)

HTML (1.13%)

Shell (0.12%)

CSS (0.01%)

Developer

system-ui

Download Statistics

Total Downloads

3,525,595

Last Day

594

Last Week

3,152

Last Month

14,594

Last Year

252,765

GitHub Statistics

5,322 Stars

4,716 Commits

672 Forks

42 Watching

43 Branches

138 Contributors

Bundle Size

1.37 kB

Minified

710.00 B

Minified + Gzipped

Bundlephobia

Maintainers

Package Meta Information

Latest Version

0.17.1

Package Id

@theme-ui/preset-base@0.17.1

Unpacked Size

14.68 kB

Size

3.54 kB

File Count

NPM Version

10.8.2

Node Version

20.18.0

Publised On

24 Oct 2024

Total Downloads

Cumulative downloads

Total Downloads

3,525,595

Last day

-22.5%

594

Compared to previous day

Last week

-18.7%

3,152

Compared to previous week

Last month

6.4%

14,594

Compared to previous month

Last year

-42.8%

252,765

Compared to previous year

Daily Downloads

Weekly Downloads

Monthly Downloads

Yearly Downloads

Peer Dependencies

@theme-ui/css

Dev Dependencies

@theme-ui/css

Versions

@theme-ui/preset-base

Theme UI includes @theme-ui/preset-base which can be used as an example or starting point for extending your own themes.

1npm i @theme-ui/preset-base

1// example theme
2import theme from '@theme-ui/preset-base'
3
4export default {
5  ...theme,
6  styles: {
7    ...theme,
8  },
9}

See all built-in presets

Contributing

We'd love to have more presets added to the Theme UI project. If you'd like to add a new preset or improve upon the existing ones, please open an issue or pull request.

No vulnerabilities found.

10

Dangerous-Workflow

Determines if the project's GitHub Action workflows avoid dangerous patterns.

10

License

Determines if the project has defined a license.

10

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

10

SAST

Determines if the project uses static code analysis.

3

Maintained

Determines if the project is "actively maintained".

0

Code-Review

Determines if the project requires human code review before pull requests (aka merge requests) are merged.

0

Token-Permissions

Determines if the project's workflows follow the principle of least privilege.

0

CII-Best-Practices

Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.

0

Security-Policy

Determines if the project has published a security policy.

0

Branch-Protection

Determines if the default and release branches are protected with GitHub's branch protection settings.

0

Fuzzing

Determines if the project uses fuzzing.

0

Pinned-Dependencies

Determines if the project has declared and pinned the dependencies of its build process.

Reason

dependency not pinned by hash detected -- score normalized to 0

Details

Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/system-ui/theme-ui/ci.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/system-ui/theme-ui/ci.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/system-ui/theme-ui/ci.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:77: update your workflow using https://app.stepsecurity.io/secureworkflow/system-ui/theme-ui/ci.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:82: update your workflow using https://app.stepsecurity.io/secureworkflow/system-ui/theme-ui/ci.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:86: update your workflow using https://app.stepsecurity.io/secureworkflow/system-ui/theme-ui/ci.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:98: update your workflow using https://app.stepsecurity.io/secureworkflow/system-ui/theme-ui/ci.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/system-ui/theme-ui/codeql-analysis.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:45: update your workflow using https://app.stepsecurity.io/secureworkflow/system-ui/theme-ui/codeql-analysis.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:56: update your workflow using https://app.stepsecurity.io/secureworkflow/system-ui/theme-ui/codeql-analysis.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:70: update your workflow using https://app.stepsecurity.io/secureworkflow/system-ui/theme-ui/codeql-analysis.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/system-ui/theme-ui/e2e.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/system-ui/theme-ui/e2e.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/system-ui/theme-ui/e2e.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/system-ui/theme-ui/e2e.yml/develop?enable=pin
Info: 0 out of 10 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 5 third-party GitHubAction dependencies pinned

0

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

Reason

42 existing vulnerabilities detected

Details

Warn: Project is vulnerable to: GHSA-67hx-6x53-jw92
Warn: Project is vulnerable to: GHSA-p8p7-x288-28g6
Warn: Project is vulnerable to: GHSA-7q7g-4xm8-89cq
Warn: Project is vulnerable to: GHSA-wf5p-g6vw-rhxx
Warn: Project is vulnerable to: GHSA-qwcr-r2fm-qrc7
Warn: Project is vulnerable to: GHSA-grv7-fg5c-xmjg
Warn: Project is vulnerable to: GHSA-257v-vj4p-3w2h
Warn: Project is vulnerable to: GHSA-pxg6-pf52-xh8x
Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275
Warn: Project is vulnerable to: GHSA-jrvm-mcxc-mf6m
Warn: Project is vulnerable to: GHSA-4gmj-3p3h-gm8h
Warn: Project is vulnerable to: GHSA-rv95-896h-c2vc
Warn: Project is vulnerable to: GHSA-qw6h-vgh9-j6wx
Warn: Project is vulnerable to: GHSA-7r28-3m3f-r2pr
Warn: Project is vulnerable to: GHSA-r8j5-h5cx-65gg
Warn: Project is vulnerable to: GHSA-2pr6-76vf-7546
Warn: Project is vulnerable to: GHSA-8j8c-7jfh-h6hx
Warn: Project is vulnerable to: GHSA-jf85-cpcp-j695
Warn: Project is vulnerable to: GHSA-fvqr-27wr-82fm
Warn: Project is vulnerable to: GHSA-4xc9-xhrj-v574
Warn: Project is vulnerable to: GHSA-x5rq-j2xg-h7qm
Warn: Project is vulnerable to: GHSA-29mw-wpgm-hmr9
Warn: Project is vulnerable to: GHSA-35jh-r3h4-6jhm
Warn: Project is vulnerable to: GHSA-p6mc-m468-83gw
Warn: Project is vulnerable to: GHSA-5v2h-r2cx-5xgj
Warn: Project is vulnerable to: GHSA-rrrm-qjm4-v8hf
Warn: Project is vulnerable to: GHSA-952p-6rrq-rcjv
Warn: Project is vulnerable to: GHSA-vh95-rmgr-6w4m
Warn: Project is vulnerable to: GHSA-xvch-5gv4-984h
Warn: Project is vulnerable to: GHSA-7hpj-7hhx-2fgx
Warn: Project is vulnerable to: GHSA-mwcw-c2x4-8c55
Warn: Project is vulnerable to: GHSA-r683-j2x4-v87g
Warn: Project is vulnerable to: GHSA-9wv6-86v2-598j
Warn: Project is vulnerable to: GHSA-rhx6-c78j-4q9w
Warn: Project is vulnerable to: GHSA-566m-qj78-rww5
Warn: Project is vulnerable to: GHSA-7fh5-64p2-3v2j
Warn: Project is vulnerable to: GHSA-m6fv-jmcg-4jfg
Warn: Project is vulnerable to: GHSA-cm22-4g7w-348p
Warn: Project is vulnerable to: GHSA-72xf-g2v4-qvf3
Warn: Project is vulnerable to: GHSA-fhg7-m89q-25r3
Warn: Project is vulnerable to: GHSA-4vvj-4cpr-p986
Warn: Project is vulnerable to: GHSA-wr3j-pwj9-hqq6

Score

3.4

/10

Last Scanned on 2025-01-27

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.

Learn More

Other packages similar to @theme-ui/preset-base

@theme-stack/preset-base

0.0.8

Theme UI includes `@theme-ui/preset-base` which can be used as an example or starting point for extending your own themes.

@theme-stack/present-base

0.0.13

Theme UI includes `@theme-ui/preset-base` which can be used as an example or starting point for extending your own themes.