
Research
/Security News
Popular Tinycolor npm Package Compromised in Supply Chain Attack Affecting 40+ Packages
Malicious update to @ctrl/tinycolor on npm is part of a supply-chain attack hitting 40+ packages across maintainers
@degjs/easing
Advanced tools
A collection of animation easing functions in Javascript's ES6 module format. Easing functions specify the rate of change of a parameter over time. Learn more about easing here.
Easing is an ES module. If your runtime environment does not support ES modules, you'll need a transpiler (Babel is a nice one).
If you're using NPM, you can install Easing with the following command:
$ npm install @degjs/easing
import { easeInOutCubic } from '@degjs/easing';
// animate a value from 100 to 300 with ease-in-out easing over the course of 1 second
let currentIteration = 0,
totalIterations = 60,
startValue = 100,
changeInValue = 200,
easedValue;
window.requestAnimationFrame(onAnimationFrame);
function onAnimationFrame() {
if(currentIteration < totalIterations) {
currentIteration++;
easedValue = easeInOutCubic(currentIteration, startValue, changeInValue, totalIterations);
}
}
All methods take the same four parameters, defined below:
Type: Number
The current iteration. Think of this in terms of animation frames or seconds/milliseconds.
Type: Number
The start value. This is the initial state of the value that will be animated.
Type: Number
The amount of change in the value over the duration of the animation.
The duration of the animation. Think of this in terms of animation frames or seconds/milliseconds.
A linear rate of change with no easing.
Starts quickly and ends slowly.
Starts slowly and ends quickly.
Starts and ends slowly.
FAQs
Animation easing functions
We found that @degjs/easing demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 7 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
/Security News
Malicious update to @ctrl/tinycolor on npm is part of a supply-chain attack hitting 40+ packages across maintainers
Security News
pnpm's new minimumReleaseAge setting delays package updates to prevent supply chain attacks, with other tools like Taze and NCU following suit.
Security News
The Rust Security Response WG is warning of phishing emails from rustfoundation.dev targeting crates.io users.