Research
Recent Trends in Malicious Packages Targeting Discord
The Socket research team breaks down a sampling of malicious packages that download and execute files, among other suspicious behaviors, targeting the popular Discord platform.
dom-mousemove-dispatcher
Advanced tools
Readme
npm install --save dom-mousemove-dispatcher
Use rollup, browserify, or some other compiler to use this library.
import mouseMoveDispatcher from 'dom-mousemove-dispatcher';
const dispatcher = mouseMoveDispatcher(window);
let div = document.querySelector('div')
div.addEventListener('mousemove', (e)=>{
//This event might have been dispatched by the dispatcher.
console.log(
'mouse moving dispatched = ',e.dispatched,
' event =', e,
' data =', e.data
);
});
div.addEventListener('mousemove', (e)=>{
if(e.data === 'myEvent'){
//The event was dispatched from this listener.
//To prevent infinite recursion don't refire until the next turn in the event loop.
e.stopPropagation();
return;
}
//Re-dispatch this event.
dispatcher.dispatch(div, e, 'myEvent');
});
//Dispatch an event with a clientX property.
setTimeout(()=>dispatcher.dispatch(div, {clientX: 500}), 1000);
The event object you get from firing a mousemove with dom-mousemove-dispatcher
has additional properties set on it. These are:
Create a mousemove
dispatcher that uses object
to set the default properties on move.
object
can be anything that can have mousemove
set through it's addEventListener
method (window, body, p, div, ...).
Dispatch a mousemove
event.
element
is the DOM element you wish to fire the mousemove on.
eventProps
are the properties you want to add to the event.
The optional data
parameter is an arbitrary javascript value that will be set on a data property on the mousemove
event object.
Cleanup the dispatcher object events, and properties.
dom-mousemove-dispatcher
is a ponyfill for mousemove
event dispatch that is optimized for quick firing of mousemove
.
Please report any bugs you find.
FAQs
Fire a mousemove on the DOM
We found that dom-mousemove-dispatcher demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
The Socket research team breaks down a sampling of malicious packages that download and execute files, among other suspicious behaviors, targeting the popular Discord platform.
Security News
Socket CEO Feross Aboukhadijeh joins a16z partners to discuss how modern, sophisticated supply chain attacks require AI-driven defenses and explore the challenges and solutions in leveraging AI for threat detection early in the development life cycle.
Security News
NIST's new AI Risk Management Framework aims to enhance the security and reliability of generative AI systems and address the unique challenges of malicious AI exploits.