Global Mangrove Watch (GMW) is an online platform that provides the remote sensing data and tools for monitoring mangroves necessary for this. It gives universal access to near real-time information on where and what changes there are to mangroves across the world, and highlights why they are valuable.
Requirements:
- NodeJs v18
- Yarn
This platform is built upon Vizzuality's scaffold project and it's using the following resources:
- React as a UI library
- Next.js as a framework
- Tailwind CSS as a styles framework
- Reusable components such as forms, modals, icons, and other most use components
- Recoil
- Typescript already configured
- git workflow and hooks
- editorconfig and code style based on Airbnb
In order to start modifying the app, please make sure to correctly configure your workstation:
- Make sure you have Node.js installed
- (Optional) Install NVM to manage your different Node.js versions
- (Optional) Use Visual Studio Code as a text editor to benefit from automatic type checking
- Configure your text editor with the Prettier, ESLint, EditorConfig, Tailwind CSS (recommended) and Headwind (recommended) plugins
- (Optional) Configure your editor to “format [code] on save” with ESLint and Prettier (1)
- Use the correct Node.js version for this app by running
nvm use; if you didn't install NVM (step 2), then manually install the Node.js version described in.nvmrc - Install the dependencies:
yarn - Run the server:
yarn dev
You can access a hot-reloaded version of the app on http://localhost:3000.
First, we recommend to read the guideline about how to use Vercel.
The easiest way to deploy your Next.js app is to use the Vercel Platform from the creators of Next.js.
Check out the Next.js deployment documentation for more details.
Please, create a PR for any improvement or feature you want to add. Try not to commit anything directly on the main branch.
Dependabot's vulnerability security alerts are configured in this repository and are displayed to the administrators.
When vulnerabilities are detected, a warning message is displayed at the top of the repository. The list of alerts can be found on the Dependabot alerts page.
Here's a step-by-step guide on how to address vulnerabilities found in production code:
- Go to the Dependabot alerts page and locate the front-end vulnerability to address
- Identify if the vulnerability affects production code:
- To do so run
yarn npm audit --recursive --environment production - If the dependency is not listed by this command, then the vulnerability only affects the development code. You can dismiss the alert on GitHub as “Vulnerable code is not actually used” in the top right corner of the vulnerability page.
- If the dependency is listed, follow the steps below.
- To do so run
- On the vulnerability page, click the “Create Dependabot security update” button
- This will create a Pull Request with a fix for the vulnerability. If GitHub can generate this PR, then you can merge and the security alert will disappear.
- If the vulnerability can't be patched automatically, follow the steps below.
- If the action fails, then you can semi-automatically update the vulnerable dependency by running
npm_config_yes=true npx yarn-audit-fix --only prodyarn-audit-fix(see repository) is a tool that applies the fixes fromnpm audit fixto Yarn installations- The tool might also not be able to fix the vulnerability. If so, continue with the steps below.
- If the action fails, then you will have to manually update the dependencies until the vulnerability is solved
| Variable name | Description | Default value |
|---|---|---|
| NEXT_PUBLIC_API_URL | URL of the API for widgets Data. | http://localhost:3000 |
| NEXT_PUBLIC_ANALYSIS_API_URL | URL of the API for the Analysis tool. | http://localhost:3000 |
| NEXT_PUBLIC_MAPBOX_API_TOKEN | Mapbox token. | |
| NEXT_PUBLIC_GA_ID | Google Analytics Tracking ID | G-JMJEG8GFH6 |
| NEXT_PUBLIC_PLANET_API_KEY | URL of the Planet API. | |
| NEXT_PUBLIC_BASE_URL | Based URL of the project. | |
| NEXT_PUBLIC_TRANSIFEX_API_KEY | URL of the Transifex API. | |
| NEXT_PUBLIC_BLOG_API_URL | URL of the API for WordPress content. |