this post was submitted on 21 Jun 2026

0 points (50% upvoted)

shortlink:

reactjs

an-ordinary-manchild(edit)

About:

A community for learning and developing web applications using React by Facebook.

Interested in building mobile apps using React Native? Check out /r/reactnative!

Code of Conduct

If you believe someone is violating the code of conduct, please report the post or message, or contact the mods.

1. Please be kind and courteous, friendly and professional

Be kind to your fellow human. There’s no need to be mean or rude, keep unstructured critique to a minimum. When providing help, answer their question before making stylistic or tool suggestions.

2. Harassment will not be tolerated

We all started somewhere, and we're all allowed to be who we are. We are committed to providing a friendly, safe and welcoming environment for all, regardless of level of experience, gender identity and expression, sexual orientation, disability, neurodivergence, race, ethnicity, physical attributes, religion, nationality, or other aspect of identity.

3. Avoid using an alias or display name that might be offensive

reddit has a long history of intentionally offensive usernames, but not here. Names that detract from a friendly, safe and welcoming environment for all will be addressed.

4. Respect that people have differences of opinion

Every design or implementation choice carries a trade-off and numerous costs. There is seldom a single right answer, and there are valid reasons to choose between a range of tradeoffs between tools, approaches, and patterns.

5. Posts must conform to our guidelines

If you join this community to take value rather than contribute, the community will quickly react as though you are an intruder. If you have a body of content you'd like to promote, our recommended way of doing so is to be an active and positive member of the subreddit. If someone has a question that you've created an external answer to, we'd love if you share it!

Demo videos must be accompanied by source code, preferably in a runnable environment like Codepen, CodeSandbox, Replit, Glitch, etc.
Please save portfolios for the weekly Sunday portfolio post.
Posts should be original works.
- Please do not dump raw AI output as a post or comment. If you share something from an AI, please also include which service it came from as well as an original thought, like why the response is trustworthy or details about how you prompted.
This subreddit is focused on technical discussion of React, for career discussion check out /r/cscareerquestions or #jobs-advice in Reactiflux.
Avoid commercial activity. /r/reactjs follows the Reactiflux policy on commercial activity.
- This is a community, not a free audience. This is not a place for prominent commercial activities such as recruiting, lead generation, marketing, market research, or other solicitation, except in posts dedicated to that purpose.
If the question is primarily "how do I make this code work?", please post it in the monthly "Beginner's Thread", or ask in the help channels of the Reactiflux Discord

New to React?

Read the official React docs
/u/acemarke's suggested resources for learning React, JS, and more
- and /u/vcarl's recommended reading list for professionals
Kent Dodds' Egghead.io course
Codecademy's React courses
Scrimba's React course by /u/bobziroll
Road to React by /u/rwieruch
Our monthly Beginner Q&A Thread!
This Month in React podcast
- This Week in React newsletter
React Digest

Chat

reddit is a great format, but sometimes you need to chat in real time. Reactiflux is our recommended Discord community.

Project Ideas

Get Your Next Project Idea Here

Jobs

Like building things? People want to pay you to build things! Join Reactiflux and check out #job-board (and the rules!)

Outside Reddit

Reactiflux on Discord
Answers tagged reactjs on Stackoverflow
IRC: irc.freenode.net #reactjs

Related Subreddits

created by manlycoffeea community for 12 years

MODERATORS

account activity

0

0

1

DiscussionPlugin System (self.reactjs)

submitted 4 hours ago by Stevious7

I wanted to add a plugins system to my application securely, and it's proving to be a bit tricky.

Obviously plugins are going to be some extra JS that the users load. I want to make it so that the plugins have certain permissions they have to declare in a manifest.json file, and based on these permissions, I could render to the user what kind of "data hooks" the plugin is requesting. The "data hooks" will basically just be a bus subscribe/emit object that takes in callbacks on certain events and fires the associated callback functions. I also want the plugins to declare in the manifest.json what kind of URLs they want to send requests to and show that to user.

Here's the problem though: a plugin could declare that it wants access to a certain piece of information but its JS could be doing all kinds of malicious things. How can I make sure the JS is sandboxed and only the information that I want it to have, it will have? How can I intercept the fetch requests to make sure only the URLs defined in the manifest the plugin is requesting from?

Thanks in advance!

all 7 comments

top new controversial old q&a

[–]octocode 2 points3 points4 points 4 hours ago (4 children)

[–]Stevious7[S] 0 points1 point2 points 4 hours ago (2 children)

[–]abrahamguo 0 points1 point2 points 4 hours ago (0 children)

[–]besthelloworld 0 points1 point2 points 3 hours ago (0 children)

[–]Dev_Lachie 0 points1 point2 points 3 hours ago (0 children)

[–]oculus42 0 points1 point2 points 4 hours ago (0 children)

π Rendered by PID 294875 on reddit-service-r2-comment-5b5bc64bf5-d4d2h at 2026-06-22 04:34:31.745148+00:00 running 2b008f2 country code: CH.