Research
Security News
Malicious npm Package Targets Solana Developers and Hijacks Funds
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
github.com/quassummanus/swiftui-tooltip
This package provides you with an easy way to show tooltips over any SwiftUI view, since Apple does not provide one.
You can add this package to your project using Swift Package Manager. Enter following url when adding it to your project package dependencies:
https://github.com/quassum/SwiftUI-Tooltip.git
We are using semver for versioning, so we would recomment selecting "Up to next major relase" option for this package.
After you added the package, all you need to do is import it and you can add a tooltip to any SwiftUI View in that file!
⭐️ Start this repo! ⭐️
As the first example, the Text
view is provided as the tooltip content and it's attached to the other Text
view.
Below you can see the example of code that is required to create the tooltip and the result you see on the screen.
Code:
import SwiftUITooltip
...
Text("Say something nice...")
.tooltip(.bottom) {
Text("Something nice!")
}
...
Result:
You can cantrol whether the tooltip is presented or not through the _ enabled: Binding<Bool>
argument. Below you can see an example of how this would look like.
@State var tooltipVisible = false
...
Button("Toggle tooltip") {
self.tooltipVisible = !self.tooltipVisible
}
...
Text("I'm the confusing text.")
.tooltip(self.tooltipVisible) {
Text("I'm the text explaining the confusing text.")
}
Second example shows you how you can add jumping animation to the tooltip from the first example.
Code:
import SwiftUI
import SwiftUITooltip
struct SwiftUIView: View {
var tooltipConfig = DefaultTooltipConfig()
init() {
self.tooltipConfig.enableAnimation = true
self.tooltipConfig.animationOffset = 10
self.tooltipConfig.animationTime = 1
}
var body: some View {
Text("Say something nice...")
.tooltip(.bottom, config: tooltipConfig) {
Text("Something nice!")
}
}
}
Result:
Below you can see all the properties that you can set in the configuration.
Property | Type | Description |
---|---|---|
side | TooltipSide | Side of view that the tooltip should appear on |
margin | CGFloat | Margin from the tooltip to the view it's attached to |
borderRadius | CGFloat | Rounded border control |
borderWidth | CGFloat | Thickness of the border |
borderColor | Color | Border color |
backgroundColor | Color | Background color inside of the tooltip |
contentPaddingLeft | CGFloat | Left padding inside of the tooltip |
contentPaddingRight | CGFloat | Right padding inside of the tooltip |
contentPaddingTop | CGFloat | Top padding inside of the tooltip |
contentPaddingBottom | CGFloat | Bottom padding inside of the tooltip |
showArrow | Bool | Whether to show or hide the arrow |
arrowWidth | CGFloat | Width of the base of the triangle |
arrowHeight | CGFloat | Height of the triangle |
enableAnimation | Bool | Whether to bounce the tooltip or not |
animationOffset | CGFloat | Delay between tooltip bouncing animations |
animationTime | Double | How long should the tooltip bounce last |
If you like this package but feel that you need more control or custom implementation - feel free to open an issue, send a pull request or fork the repo!
Reward function: Contributors with even smallest PRs will be added to the list in the Contributors section!
This package is licensed under MIT License
FAQs
Unknown package
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
Security News
Research
Socket researchers have discovered malicious npm packages targeting crypto developers, stealing credentials and wallet data using spyware delivered through typosquats of popular cryptographic libraries.
Security News
Socket's package search now displays weekly downloads for npm packages, helping developers quickly assess popularity and make more informed decisions.