Dependencies
Warning
This page is deprecated and may be removed soon.
Below, you can find the latest dependencies involved in this project. We separate dependencies like the package.json, based on main dependencies and developer dependencies (devDependencies).
If you're looking to upgrade a dependency, it's helpful to inspect the Upgrade tips and view any additional information on the dependency itself
🟥 🚧 This list is a work in progress at the moment
Dependency upgrades are managed using dependabot, so pull requests will come in on a regular basis.
Upgrades are important to maintain an up-to-date codebase. This helps us:
- Fix known security issues
- Introduce improvements as we're downstream from a lot of code
- Reduce risk by continuously checking upgrades
Please verify the following checklists if you're upgrading a dependency as provided by dependabot.
Note that dependabot starts rebasing PRs after another upgrade has been merged. It's not the end of the world if you merge while it's doing that, but it is preferred you let the rebase finish. If it's ongoing you'll see the following at the original comment of the pull request:
⚠️ Dependabot is rebasing this PR⚠️
- Do the release notes indicate relevant breaking changes?
- Does the Heroku deploy complete?
- Does the functionality the dependency provides still function as expected?
- Anything off?
- Do the release notes indicate relevant breaking changes?
- Does the Heroku deploy complete?
- Does the functionality the dependency provides still function as expected?
- Anything off?
This also checks for breaking changes as not everybody follows SemVer correctly, where only major versions can have breaking changes.
- Does the dependabot compatibility score provide reason for concern?
- Does the Heroku deploy complete?
- Does the functionality the dependency provides still function as expected?
- Anything off?
Used to do authentication and authorization in the app (documentation). Introduced in Blitz 2.0.
Used to make use of Next-specific functionality of Blitz (documentation). Introduced in Blitz 2.0.
Used for query and mutation resolvers of Blitz (documentation). Introduced in Blitz 2.0.
Used to render icons. The icons are listed here.
Used to render UI components
Used to perform CRUD with the db.
Used to style form elements via tailwind.
Used to truncate the module title in app/core/components/ModuleCard.tsx.
Used to communicate with Algolia's search API. (docs)
Installed together with Tailwind as a peer dependency. (doc)
Used to
- communicate with Uploadcare (main & supporting files, changing avatar)
- get metadata when adding a reference module via DOI
createReferenceModule - handle payment with Stripe
- send CrossRef XML data in a PUT request
Used to run multiple processes during development. (npm run dev)
Candidate for moving to devDependencies.
Used to lint code.
Candidate for moving to devDependencies.
Used to render readable filesizes in the interface.
Helps run pre-commit and pre-push hooks.
This is a candidate for moving to devDependencies potentially.
Used to handle localization (e.g., the hero and the subtitle). See also react-i18next and Localization
Next.js library. The React framework we are using.
Used to connect accounts to ORCID.
Needed for @react-pdf-viewer/core to function.
Installed as a dependency to tailwind (Tailwind Doc)
Used to send transactional and broadcast emails using Postmark.
Prisma CLI. Used to manage db.
WYSIWYG editor. See also react-quilljs
Used to run periodic jobs.
To add new periodic jobs, please see the documentation. Best way is to add a custom API route to test the query in first. For example:
import { BlitzApiHandler } from "blitz"
import db from "db"
const handler: BlitzApiHandler = async (req, res) => {
const module = await db.module.findMany({})
res.statusCode = 200
res.setHeader("Content-Type", "application/json")
res.end(JSON.stringify(module))
}
export default handlerTo test jobs, please visit your local instance of Quirrel - it usually runs on http://127.0.0.1:9181 or the address printed in the console when running npm run dev. After invoking the job, check the console if you're testing. Make sure the test app deployment works too.
Before being acquired by Netlify, we ran this through Quirrel.dev itself - now we host our own instance over at Railway based on our own fork.
Used to deal with consent for optional cookies.
Used to generate module maps.
Used to handle localization in React. See also i18next and Localization.
Candidate for deletion - unclear what function it fulfills (but deletion needs to be tested).
Used to render Markdown for the main files.
Markdown files that can be used for testing:
- Test markdown file
- The main file from Many Paths module
Used to detect the dark mode and min-width via useMediaPredicate(). For example:
const prefersDarkMode = useMediaPredicate("(prefers-color-scheme: dark)")const biggerWindow = useMediaPredicate("(min-width: 640px)")React component for the WYSIWYG editor quill.
Used to create charts for the /stats page.
Used to manage state in the app.
If you're looking to learn how recoil works, check out this free course.
Logging may get too noisy on local. If so, set RECOIL_DUPLICATE_ATOM_KEY_CHECKING_ENABLED=FALSE in .env.local (See this issue)
Effect used to store recoil state in localStorage.
Candidate for deletion if we implement in our own project. Used primarily for convenience's sake.
Used to render equations on Markdown files
Used for payment integrations.
Cannot be tested with automated deployments, because this needs Stripe webhooks to be active. Because Heroku deployment apps have a priori not known URLs, we do not have a priori accepted webhooks.
Figured out via Issue 721
- Create an account on Stripe
- Add products. Any names will work (e.g., "Collaborative Collection", "Community Collection")
- Get the API IDs of the products (
price_***) - Update the API IDs in the seeding script (
seeds.ts) - Seed the database (
blitz db seed) - Run the Stripe CLI (install stripe-cli first):
stripe listen --forward-to localhost:3000/api/stripe_webhook
- Match the Stripe secrets with your Stripe account (
STRIPE_SECRET_KEY,STRIPE_PUBLISHABLE_KEY, andSTRIPE_WEBHOOK_SECRET).STRIPE_WEBHOOK_SECRETis shown in the console when Stripe CLI is running. - Start the app and complete the transaction with the following test credit card 💳
CC Nr: 4242 4242 4242 4242
Expiration date: 10/30 (any future date)
CVC: 000
Address: (any address)
See also the Stripe docs.
- Publishing a module
- Pay what you want when publishing a module
- Closed license payments
- Collections
- Collaborative
- Community
- Upgrade collection
- Supporting membership dues
Used to style the app. Installed together with postcss & autoprefixer.
Used to validate input.
Used to test DOM elements via Jest.
Used to test React components.
Used to test React hooks.
Used to lint our code.
An ESLint configuration for Next.js
An ESLint configuration for prettier.
Used to run tests.
Used to run tests, required by jest.
Used to obtain type definitions for React.
Used to run jest.
Used to test the CrossRef deposit process via npm run test:xml.
"test:xml": "tsx app/core/crossref/rawtest.ts"
Introduced in #614.