Gathering detailed insights and metrics for relay-compiler-language-typescript
Gathering detailed insights and metrics for relay-compiler-language-typescript
Installations
npm install relay-compiler-language-typescriptDeveloper
relay-tools
Developer Guide
BETA
Module System
CommonJS
Min. Node Version
Typescript Support
Yes
Node Version
14.18.3
NPM Version
6.14.15
Statistics
241 Stars
870 Commits
70 Forks
8 Watching
18 Branches
48 Contributors
Updated on 27 Jul 2024
Languages
TypeScript (82.8%)
JavaScript (9.89%)
CSS (6.74%)
HTML (0.54%)
Shell (0.02%)
Total Downloads
Cumulative downloads
Total Downloads
8,292,704
Last day
6.2%
3,373
Compared to previous day
Last week
4.5%
16,995
Compared to previous week
Last month
8.4%
70,503
Compared to previous month
Last year
-52.9%
827,269
Compared to previous year
Daily Downloads
Weekly Downloads
Monthly Downloads
Yearly Downloads
Dependencies
1
Dev Dependencies
25
Versions
Obsolete
This repository is obsolete as relay@13 now supports TypeScript directly.
relay-compiler-language-typescript
A language plugin for Relay that adds TypeScript support, including emitting type definitions.
Installation
Add the package to your dev dependencies:
yarn add graphql relay-compiler --dev
yarn add typescript relay-compiler-language-typescript --dev
Note: Starting with version 15.0.0 relay-compiler-language-typescript requires a minimum TypeScript version of 4.5.0 being installed in your project.
Configuration
relay-compiler
Then configure your relay-compiler script to use it, like so:
1{ 2 "scripts": { 3 "relay": 4 "relay-compiler --src ./src --schema data/schema.graphql --language typescript --artifactDirectory ./src/__generated__" 5 } 6}
This is going to store all artifacts in a single directory, which you also need
to instruct babel-plugin-relay to use in your .babelrc:
1{ 2 "plugins": [["relay", { "artifactDirectory": "./src/__generated__" }]] 3}
TypeScript
Also be sure to configure the TypeScript compiler to transpile to ES2015
modules (or higher) and leave transpilation to CommonJS modules (if required)
up to Babel with the following tsconfig.json settings:
1{ 2 "compilerOptions": { 3 "module": "ES2015", // ES2015 or higher 4 "target": "ES2020" // best use the highest target setting compatible with your Babel setup 5 } 6}
The reason for this is that tsc would otherwise generate code where the
imported graphql function is being namespaced (react_relay_1 in this
example):
1react_relay_1.createFragmentContainer( 2 MyComponent, 3 react_relay_1.graphql` 4 ... 5` 6);
… which makes it impossible for babel-plugin-relay to find the locations
where the graphql function is being used.
The generated code uses ES2015 module syntax if module is set to ES2015 or
higher in your tsconfig.json. Note that the eagerESModules option from
relay-compiler has no effect on the generated code if module is ES2015 or
higher.
Custom Headers
If you need to add a custom header to generated files, perhaps for a custom linter
or to get boilerplate license code in, that can be passed in also in compilerOptions
as banner:
1{ 2 "compilerOptions": { 3 "banner": "/* © 2021 Example.org - @generated code */" 4 } 5}
Problems
React Hot Loader
React Hot Loader is known to not always work well with generated code such as our typing artifacts, which will lead to loading modules with TypeScript types into the browser and break. As a maintainer of RHL pointed out in a similar issue:
The problem - hot reloading is not "complete"
So until RHL will be made “complete” this project can’t gurantee to always work well with it, nor is it our control to do anything about that.
Also see
- You can find a copy of the Relay example TODO app inside this repository or you can take a look at the Artsy React Native app.
- There are Relay tslint rules available here.
License
This package is available under the MIT license. See the included LICENSE file for details.
No vulnerabilities found.
Reason
no dangerous workflow patterns detected
Reason
no binaries found in the repo
Reason
license file detected
Details
- Info: project has a license file: LICENSE.md:0
- Info: FSF or OSI recognized license: MIT License: LICENSE.md:0
Reason
project is archived
Details
- Warn: Repository is archived.
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Warn: no topLevel permission defined: .github/workflows/ci.yml:1
- Warn: no topLevel permission defined: .github/workflows/dependabot-auto-merge.yml:1
- Warn: no topLevel permission defined: .github/workflows/release.yml:1
- Info: no jobLevel write permissions found
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
dependency not pinned by hash detected -- score normalized to 0
Details
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/relay-tools/relay-compiler-language-typescript/ci.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/relay-tools/relay-compiler-language-typescript/ci.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/relay-tools/relay-compiler-language-typescript/ci.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/dependabot-auto-merge.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/relay-tools/relay-compiler-language-typescript/dependabot-auto-merge.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/relay-tools/relay-compiler-language-typescript/release.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/relay-tools/relay-compiler-language-typescript/release.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/relay-tools/relay-compiler-language-typescript/release.yml/master?enable=pin
- Info: 0 out of 5 GitHub-owned GitHubAction dependencies pinned
- Info: 0 out of 2 third-party GitHubAction dependencies pinned
Reason
security policy file not detected
Details
- Warn: no security policy file detected
- Warn: no security file to analyze
- Warn: no security file to analyze
- Warn: no security file to analyze
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
SAST tool is not run on all commits -- score normalized to 0
Details
- Warn: 0 commits out of 30 are checked with a SAST tool
Reason
35 existing vulnerabilities detected
Details
- Warn: Project is vulnerable to: GHSA-67hx-6x53-jw92
- Warn: Project is vulnerable to: GHSA-whgm-jr23-g3j9
- Warn: Project is vulnerable to: GHSA-93q8-gq69-wqmw
- Warn: Project is vulnerable to: GHSA-qwcr-r2fm-qrc7
- Warn: Project is vulnerable to: GHSA-cwfw-4gq5-mrqx
- Warn: Project is vulnerable to: GHSA-g95f-p29q-9xw4
- Warn: Project is vulnerable to: GHSA-grv7-fg5c-xmjg
- Warn: Project is vulnerable to: GHSA-x9w5-v3q2-3rhw
- Warn: Project is vulnerable to: GHSA-pxg6-pf52-xh8x
- Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275
- Warn: Project is vulnerable to: GHSA-434g-2637-qmqr
- Warn: Project is vulnerable to: GHSA-49q7-c7j4-3p7m
- Warn: Project is vulnerable to: GHSA-977x-g7h5-7qgw
- Warn: Project is vulnerable to: GHSA-f7q4-pwc6-w24p
- Warn: Project is vulnerable to: GHSA-fc9h-whq2-v747
- Warn: Project is vulnerable to: GHSA-rv95-896h-c2vc
- Warn: Project is vulnerable to: GHSA-qw6h-vgh9-j6wx
- Warn: Project is vulnerable to: GHSA-jchw-25xp-jwwc
- Warn: Project is vulnerable to: GHSA-cxjh-pqwp-8mfp
- Warn: Project is vulnerable to: GHSA-c7qv-q95q-8v27
- Warn: Project is vulnerable to: GHSA-78xj-cgh5-2h22
- Warn: Project is vulnerable to: GHSA-2p57-rm9w-gvfp
- Warn: Project is vulnerable to: GHSA-9c47-m6qq-7p4h
- Warn: Project is vulnerable to: GHSA-952p-6rrq-rcjv
- Warn: Project is vulnerable to: GHSA-5rrq-pxf6-6jx5
- Warn: Project is vulnerable to: GHSA-8fr3-hfg3-gpgp
- Warn: Project is vulnerable to: GHSA-gf8q-jrpm-jvxq
- Warn: Project is vulnerable to: GHSA-2r2c-g63r-vccr
- Warn: Project is vulnerable to: GHSA-cfm4-qjh2-4765
- Warn: Project is vulnerable to: GHSA-x4jg-mjrx-434g
- Warn: Project is vulnerable to: GHSA-9wv6-86v2-598j
- Warn: Project is vulnerable to: GHSA-m6fv-jmcg-4jfg
- Warn: Project is vulnerable to: GHSA-cm22-4g7w-348p
- Warn: Project is vulnerable to: GHSA-wr3j-pwj9-hqq6
- Warn: Project is vulnerable to: GHSA-3h5v-q93c-6h6q
Score
3.1
/10
Last Scanned on 2024-11-18
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More