Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@filerobot/attach-dnd
Advanced tools
Attaches drag & drop zone to the specified HTML target, so any file dropped in that target would be uploaded.
@filerobot/attach-dnd
Attaches drag & drop (dnd) zone of the Filerobot widget to some HTML element of your page Filerobot Media Asset Widget.
Note: This plugin requires @filerobot/explorer plugin to be existed & used in the widget, as the
attach-dnd
plugin role is only attaching the drag & drop zone to some element of your page and the rest is handled through the explorer & widget.
The plugin can be installed from NPM as @filerobot/attach-dnd
npm install --save @filerobot/attach-dnd
then
import AttachDrop from '@filerobot/attach-dnd'
...
...
...
filerobot.use(AttachDrop, optionsObject)
If installed via a CDN link, the plugin is inside the Filerobot
global object as Filerobot.AttachDrop
const AttachDrop = window.Filerobot.AttachDrop
...
...
...
filerobot.use(AttachDrop, optionsObject)
target: string or HTML Element
(required)default: document.body
The selector (ID, Class) of an HTML element or an existed HTML element that would be attached with the drag & drop zone, also the drop hint would be shown to this target selector's element, by default it's the body of the document page.
fixedDropHint: boolean
(optional)default: false
If set to true
, the drop hint shown while dragging the file/folder on the target
element would be in a fixed position.
Note: it might be useful to use this property if your page scroll and the drop zone doesn't keep in the same scroll position.
noDropHint: boolean
(optional)default: false
If you don't want to show the drop hint shown while dragging the file/folder over the target element then provide true
value here, otherwise it would be shown normally.
FAQs
Attaches drag & drop zone to the specified HTML target, so any file dropped in that target would be uploaded.
The npm package @filerobot/attach-dnd receives a total of 1,183 weekly downloads. As such, @filerobot/attach-dnd popularity was classified as popular.
We found that @filerobot/attach-dnd demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.