Security News
Node.js EOL Versions CVE Dubbed the "Worst CVE of the Year" by Security Experts
Critics call the Node.js EOL CVE a misuse of the system, sparking debate over CVE standards and the growing noise in vulnerability databases.
focusable-selectors
Advanced tools
focusable-selectors
is a micro-lib exporting an array of CSS selectors for focusable HTML elements. Figuring out which element can be focused is not always trivial and is sometimes necessary to build fully accessible widgets such as a11y-dialog.
It supports:
contenteditable
attribute,tabindex
attribute,inert
attribute.For a more advanced solution using JavaScript and covering more edge cases, refer to focus-trap/tabbable.
npm install --save focusable-selectors
import focusableSelectors from 'focusable-selectors'
To have a single CSS selector out of it, join the array with commas:
const selector = selectors.join(',')
const focusableElements = document.querySelectorAll(selector)
The “focusability” of an element is not solely based on its type, but also on its styles. A relatively straightforward solution is to use JavaScript to figure out whether focusable elements are effectively visible by checking their dimensions.
function isVisible(element) {
return Boolean(
element.offsetWidth ||
element.offsetHeight ||
element.getClientRects().length
)
}
const selector = selectors.join(',')
const focusableElements = Array.from(
document.querySelectorAll(selector)
).filter(isVisible)
FAQs
A list of CSS selectors for focusable elements
The npm package focusable-selectors receives a total of 53,296 weekly downloads. As such, focusable-selectors popularity was classified as popular.
We found that focusable-selectors demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Critics call the Node.js EOL CVE a misuse of the system, sparking debate over CVE standards and the growing noise in vulnerability databases.
Security News
cURL and Go security teams are publicly rejecting CVSS as flawed for assessing vulnerabilities and are calling for more accurate, context-aware approaches.
Security News
Bun 1.2 enhances its JavaScript runtime with 90% Node.js compatibility, built-in S3 and Postgres support, HTML Imports, and faster, cloud-first performance.