Feature/new dashboard 1

[sandeep-deriv]

Update

New Deriv API Dashboard and initial App Registration flow

• Added use gesture, spring web, and quill design package
• Added custom radio button component (single)
• Added swipeable bottom sheet component (on mobile it would be a swipeable bottom sheet and on desktop it would be a regular modal)
• Added AppDashboardContainer to hold the children under the Dashboard
• Added useDevice hook to determine Desktop, Mobile, and Tablet devices

[vercel]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Updated (UTC)
deriv-api-docs	✅ Ready (Inspect)	Visit Preview	Oct 15, 2024 5:45am

[github-actions]

Dependency Review

The following issues were found:

• ✅ 0 vulnerable package(s)
• ✅ 0 package(s) with incompatible licenses
• ✅ 0 package(s) with invalid SPDX license definitions
• ⚠️ 1 package(s) with unknown licenses.
• ⚠️ 3 packages with OpenSSF Scorecard issues.

See the Details below.

License Issues

package.json

Package	Version	License	Issue Type
@deriv-com/quill-ui	^1.13.22	Null	Unknown License

OpenSSF Scorecard

Package	Version	Score	Details
npm/@use-gesture/core	10.3.1	⚠️ 2.8	Details Check Score Reason Code-Review ⚠️ 1 Found 4/24 approved changesets -- score normalized to 1 Maintained ⚠️ 2 0 commit(s) and 3 issue activity found in the last 90 days -- score normalized to 2 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Packaging ⚠️ -1 packaging workflow not detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Branch-Protection ⚠️ 0 branch protection not enabled on development/release branches Binary-Artifacts 🟢 10 no binaries found in the repo SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Security-Policy ⚠️ 0 security policy file not detected Vulnerabilities ⚠️ 0 45 existing vulnerabilities detected
npm/@use-gesture/react	10.3.1	⚠️ 2.8	Details Check Score Reason Code-Review ⚠️ 1 Found 4/24 approved changesets -- score normalized to 1 Maintained ⚠️ 2 0 commit(s) and 3 issue activity found in the last 90 days -- score normalized to 2 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Packaging ⚠️ -1 packaging workflow not detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Branch-Protection ⚠️ 0 branch protection not enabled on development/release branches Binary-Artifacts 🟢 10 no binaries found in the repo SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Security-Policy ⚠️ 0 security policy file not detected Vulnerabilities ⚠️ 0 45 existing vulnerabilities detected
npm/@deriv-com/quill-ui	^1.13.22	Unknown	Unknown
npm/@radix-ui/react-tooltip	^1.0.7	🟢 4.2	Details Check Score Reason Code-Review 🟢 4 Found 14/30 approved changesets -- score normalized to 4 Maintained 🟢 10 29 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Packaging ⚠️ -1 packaging workflow not detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts 🟢 10 no binaries found in the repo Security-Policy ⚠️ 0 security policy file not detected Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities ⚠️ 0 10 existing vulnerabilities detected
npm/@react-spring/web	^9.7.3	🟢 3.8	Details Check Score Reason Code-Review 🟢 4 Found 9/20 approved changesets -- score normalized to 4 Maintained 🟢 6 5 commit(s) and 3 issue activity found in the last 90 days -- score normalized to 6 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases ⚠️ -1 no releases found Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Packaging ⚠️ -1 packaging workflow not detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts 🟢 10 no binaries found in the repo SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Security-Policy ⚠️ 0 security policy file not detected Vulnerabilities ⚠️ 0 34 existing vulnerabilities detected
npm/@use-gesture/react	^10.3.0	⚠️ 2.8	Details Check Score Reason Code-Review ⚠️ 1 Found 4/24 approved changesets -- score normalized to 1 Maintained ⚠️ 2 0 commit(s) and 3 issue activity found in the last 90 days -- score normalized to 2 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Packaging ⚠️ -1 packaging workflow not detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Branch-Protection ⚠️ 0 branch protection not enabled on development/release branches Binary-Artifacts 🟢 10 no binaries found in the repo SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Security-Policy ⚠️ 0 security policy file not detected Vulnerabilities ⚠️ 0 45 existing vulnerabilities detected
npm/@deriv/quill-icons	^1.22.10	Unknown	Unknown

Scanned Manifest Files

package-lock.json

• @use-gesture/[email protected]
• @use-gesture/[email protected]

package.json

• @deriv-com/quill-ui@^1.13.22
• @radix-ui/react-tooltip@^1.0.7
• @react-spring/web@^9.7.3
• @use-gesture/react@^10.3.0
• @deriv/quill-icons@^1.22.10