Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
gsap-trial
Advanced tools
Trial version of GSAP that includes all bonus plugins which are normally available exclusively to Club GSAP members. *** DO NOT DEPLOY THESE FILES *** They only work locally or on domains like codepen.io, codesandbox.io, stackblitz.com and jsfiddle.com. I
⚠️ DO NOT DEPLOY THESE FILES! ⚠️
This package is only intended for experimentation during development. It contains the public GSAP files plus all bonus plugins which are normally available exclusively to Club GSAP members, including ScrollSmoother, DrawSVG, MorphSVG, SplitText, Inertia, and more. The trial plugins only work locally and on certain approved domains like codesandbox.io, codepen.io, stackblitz.com, and jsfiddle.com. Deploying them elsewhere violates the license and will result in a browser redirect!
Sign up for Club GSAP to get the completely unrestricted files.
No GSAP files (including the trial plugins) implement any tracking whatsoever. No data is collected.
View the full documentation here, including an installation guide.
On a whitelisted domain like codesandbox.io, you can do this:
// typical import
import gsap from "gsap-trial";
// or get other plugins:
import ScrollTrigger from "gsap-trial/ScrollTrigger";
import DrawSVGPlugin from "gsap-trial/DrawSVGPlugin";
// or all tools are exported from the "all" file (excluding bonus plugins):
import { gsap, ScrollTrigger, DrawSVGPlugin } from "gsap-trial/all";
// don't forget to register plugins
gsap.registerPlugin(ScrollTrigger, DrawSVGPlugin);
The NPM files are ES modules, but there is also a /dist/ directory with UMD files for extra compatibility. Some build tools don't understand ES Modules in which case you can import the UMD files by adding /dist/ like:
// UMD imports
import gsap from "gsap-trial/dist/gsap";
import MorphSVGPlugin from "gsap-trial/dist/MorphSVGPlugin";
Install the package as a "gsap" alias so that when you join Club GSAP and get the unrestricted files, all you have to do is install those and make zero changes to all your imports!
npm install gsap@npm:gsap-trial
Now we can simply use "gsap" in place of "gsap-trial", so the imports could look like this:
import gsap from "gsap";
import DrawSVGPlugin from "gsap/DrawSVGPlugin";
Once you're a Club GSAP member, download the unrestricted plugins from your gsap.com account and then include them in your own JS payload. There are no "phone home" scripts that track usage and the plugins won't suddenly stop working if/when your membership expires. We treat others the way we'd like to be treated and our entire business model is built on the honor system. Read about it here. GSAP has a private NPM registry for members too.
Post your questions in our forums and we'd be happy to help.
There's a @gsap/react package that exposes a useGSAP()
hook which is a drop-in replacement for useEffect()
/useLayoutEffect()
, automating cleanup tasks. Please read the React guide for details.
If you're looking for scroll-driven animations, GSAP's ScrollTrigger plugin is the new standard. There's a companion ScrollSmoother as well.
There are 3 main reasons anyone signs up for Club GSAP:
The GSAP forums are an excellent place to learn and get your questions answered. Report any bugs there too please (it's also okay to file an issue on Github if you prefer).
Please do not use any of the bonus plugins without the proper license which comes with Club GSAP memberships. GSAP's standard "no charge" license for the public files can be viewed at https://gsap.com/standard-license. Club GSAP members are granted additional rights. See http://gsap.com/licensing/ for details. Why doesn't GSAP use an MIT (or similar) open source license, and why is that a good thing? This article explains it all: http://gsap.com/why-license/
Copyright (c) 2008-2023, GreenSock. All rights reserved.
FAQs
Trial version of GSAP that includes all bonus plugins which are normally available exclusively to Club GSAP members. *** DO NOT DEPLOY THESE FILES *** They only work locally or on domains like codepen.io, codesandbox.io, stackblitz.com and jsfiddle.com. I
We found that gsap-trial demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.