tuanductran / todo-list-vite Goto Github PK

View Code? Open in Web Editor NEW

16.0 3.0 2.0 1.62 MB

A user-friendly and responsive Todo List web application developed using React and Vite.

Home Page: https://todo-list-vite-eight.vercel.app/

License: MIT License

JavaScript 19.03% CSS 2.45% HTML 4.25% TypeScript 74.26%

react tailwind todo vite millionjs swr typescript indexdb

todo-list-vite's Introduction

React Vite Todo List

Welcome to the React Vite Todo List, a user-friendly and responsive web application for managing your tasks. This project is developed using React and Vite, incorporating modern technologies such as Tailwind CSS for styling, SWR for efficient data fetching, and React Hot Toast for notifications.

Branch Structure

This repository follows a branch model with two main branches:

master: The stable branch containing production-ready code.
develop: The branch dedicated to developing new features and improvements.

Key Features

Easy Task Addition: Effortlessly add new tasks to your list, optimizing your workflow.
Real-time Data Fetching: Utilize SWR for efficient data fetching and caching, ensuring a smooth user experience.
Responsive Design: Enjoy a responsive design crafted with Tailwind CSS, making the app accessible across multiple devices.
Convenient Notifications: Stay updated with convenient notifications powered by React Hot Toast.

Getting Started

1. Clone the Repository

git clone https://github.com/tuanductran/todo-list-vite.git

2. Install Dependencies

pnpm install

3. Run the Development Server

pnpm dev

4. Open your browser and navigate to

http://localhost:5173

Contributions

Feel free to contribute to this project by opening issues or submitting pull requests. Your feedback and suggestions are highly appreciated.

License

This project is licensed under the MIT License - see the LICENSE file for details.

Enhance your task management with the Todo List application developed with React Vite. Simplify your planning and organization while enjoying a modern and efficient user experience.

todo-list-vite's People

Contributors

Stargazers

Watchers

Forkers

lf125580 bighb

todo-list-vite's Issues

xlsx-0.18.5.tgz: 2 vulnerabilities (highest severity is: 7.8)

Vulnerable Library - xlsx-0.18.5.tgz

SheetJS Spreadsheet data parser and writer

Library home page: https://registry.npmjs.org/xlsx/-/xlsx-0.18.5.tgz

Path to dependency file: /package.json

Path to vulnerable library: /package.json

Found in HEAD commit: 244906b8d09d7f2e88b39ef2d55865f28a547545

Vulnerabilities

CVE	Severity	CVSS	Dependency	Type	Fixed in (xlsx version)	Remediation Possible**
CVE-2023-30533	High	7.8	xlsx-0.18.5.tgz	Direct	N/A	❌
CVE-2024-22363	High	7.5	xlsx-0.18.5.tgz	Direct	N/A	❌

**In some cases, Remediation PR cannot be created automatically for a vulnerability despite the availability of remediation

Details

CVE-2023-30533

Vulnerable Library - xlsx-0.18.5.tgz

SheetJS Spreadsheet data parser and writer

Library home page: https://registry.npmjs.org/xlsx/-/xlsx-0.18.5.tgz

Path to dependency file: /package.json

Path to vulnerable library: /package.json

Dependency Hierarchy:

❌ xlsx-0.18.5.tgz (Vulnerable Library)

Found in HEAD commit: 244906b8d09d7f2e88b39ef2d55865f28a547545

Found in base branch: master

Vulnerability Details

SheetJS Community Edition before 0.19.3 allows Prototype Pollution via a crafted file. In other words. 0.19.2 and earlier are affected, whereas 0.19.3 and later are unaffected.

Publish Date: 2023-04-24

URL: CVE-2023-30533

CVSS 3 Score Details (7.8)

Base Score Metrics:

Exploitability Metrics:
- Attack Vector: Local
- Attack Complexity: Low
- Privileges Required: None
- User Interaction: Required
- Scope: Unchanged
Impact Metrics:
- Confidentiality Impact: High
- Integrity Impact: High
- Availability Impact: High

For more information on CVSS3 Scores, click here.

Step up your Open Source Security Game with Mend here

CVE-2024-22363

Vulnerable Library - xlsx-0.18.5.tgz

SheetJS Spreadsheet data parser and writer

Library home page: https://registry.npmjs.org/xlsx/-/xlsx-0.18.5.tgz

Path to dependency file: /package.json

Path to vulnerable library: /package.json

Dependency Hierarchy:

❌ xlsx-0.18.5.tgz (Vulnerable Library)

Found in HEAD commit: 244906b8d09d7f2e88b39ef2d55865f28a547545

Found in base branch: master

Vulnerability Details

SheetJS Community Edition before 0.20.2 is vulnerable.to Regular Expression Denial of Service (ReDoS).

Publish Date: 2024-04-05

URL: CVE-2024-22363

CVSS 3 Score Details (7.5)

Base Score Metrics:

Exploitability Metrics:
- Attack Vector: Network
- Attack Complexity: Low
- Privileges Required: None
- User Interaction: None
- Scope: Unchanged
Impact Metrics:
- Confidentiality Impact: None
- Integrity Impact: None
- Availability Impact: High

For more information on CVSS3 Scores, click here.

Step up your Open Source Security Game with Mend here

Dependency Dashboard

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.

Edited/Blocked

These updates have been manually edited so Renovate will no longer make changes. To discard all commits and start over, click on a checkbox.

chore(deps): update dependency eslint to v9

Open

These updates have all been created already. Click a checkbox below to force a retry/rebase of any.

chore(deps): update dependency @ianvs/prettier-plugin-sort-imports to v4.3.1
chore(deps): update dependency vite to v5.3.4
chore(deps): update lint (@typescript-eslint/eslint-plugin, @typescript-eslint/parser, eslint-plugin-react, prettier)
fix(deps): update dependency tailwindcss to v3.4.5
Click on this checkbox to rebase all open PRs at once

Detected dependencies

github-actions

.github/workflows/auto-response.yml

actions/github-script v7

actions/github-script v7

.github/workflows/autofix.yml

actions/checkout v4

actions/setup-node v4

pnpm/action-setup v4.0.0

autofix-ci/action 2891949f3779a1cafafae1523058501de3d4e944

.github/workflows/dependency-review.yml

actions/checkout v4

actions/dependency-review-action v4

.github/workflows/lint.yml

styfle/cancel-workflow-action 0.12.1

actions/checkout v4

pnpm/action-setup v4.0.0

actions/setup-node v4

.github/workflows/stale.yml

actions/stale v9

npm

package.json

@headlessui/react ^2.1.2

@vercel/analytics ^1.3.1

@vercel/speed-insights ^1.0.11

clsx ^2.1.1

dompurify ^3.1.6

idb ^8.0.0

million ^3.1.6

react ^18.3.1

react-dom ^18.3.1

react-hook-form ^7.52.0

react-hot-toast ^2.4.1

swr ^2.2.5

tailwindcss ^3.4.3

@ianvs/prettier-plugin-sort-imports ^4.2.1

@tailwindcss/forms ^0.5.7

@types/dompurify ^3.0.5

@types/node ^20.12.12

@types/react ^18.3.2

@types/react-dom ^18.3.0

@typescript-eslint/eslint-plugin 7.16.0

@typescript-eslint/parser 7.16.0

@vitejs/plugin-react ^4.3.1

autoprefixer ^10.4.19

concurrently ^8.2.2

eslint 8.57.0

eslint-config-prettier 9.1.0

eslint-plugin-import 2.29.1

eslint-plugin-react 7.34.3

eslint-plugin-react-hooks 4.6.2

eslint-plugin-sonarjs ^1.0.3

eslint-plugin-tailwindcss 3.17.4

eslint-plugin-typescript-sort-keys 3.2.0

eslint-plugin-unicorn 54.0.0

postcss ^8.4.38

postcss-cli ^11.0.0

postcss-import ^16.1.0

postcss-lightningcss ^1.0.0

prettier 3.3.2

prettier-plugin-pkg 0.18.1

prettier-plugin-tailwindcss 0.6.5

turbo ^2.0.3

typescript ^5.4.5

vite 5.3.3

pnpm 9.5.0

Check this box to trigger a request for Renovate to run again on this repository

tuanductran / todo-list-vite Goto Github PK

todo-list-vite's Introduction

React Vite Todo List

Branch Structure

Key Features

Getting Started

1. Clone the Repository

2. Install Dependencies

3. Run the Development Server

4. Open your browser and navigate to

Contributions

License

todo-list-vite's People

Contributors

Stargazers

Watchers

Forkers

todo-list-vite's Issues

Vulnerabilities

Details

Vulnerable Library - xlsx-0.18.5.tgz

Vulnerability Details

CVSS 3 Score Details (7.8)

Vulnerable Library - xlsx-0.18.5.tgz

Vulnerability Details

CVSS 3 Score Details (7.5)

Edited/Blocked

Open

Detected dependencies

Recommend Projects

Recommend Topics

Recommend Org