Security News
pnpm 10.0.0 Blocks Lifecycle Scripts by Default
pnpm 10 blocks lifecycle scripts by default to improve security, addressing supply chain attack risks but sparking debate over compatibility and workflow changes.
Cross-browser plugin that makes any element on your page visible while you scroll
Cross-browser plugin that makes any element on your page visible while you scroll.
This package can be installed with:
Or download the latest release.
<script src="/path_to/hc-sticky.js"></script>
In the script, including HC-Sticky will usually look like this:
const hcSticky = require('hc-sticky');
Be sure to call HC-Sticky once your element is available in the DOM.
var Sticky = new hcSticky('#element', {
stickTo: '#content'
});
jQuery(document).ready(function($) {
$('#element').hcSticky({
stickTo: '#content'
});
});
HC Sticky has a wide range of options you can set to have a full controll over the sticky elements.
Property | Default | Type | Description |
---|---|---|---|
top | 0 | int | The distance from the top of the Window at which to trigger HC-Sticky. |
bottom | 0 | int | The distance from the bottom of the Window at which to attach HC-Sticky. |
innerTop | 0 | int | The distance from the top inside of the sticky element at which to trigger HC-Sticky. |
innerSticker | null | string / element object | Element inside of the sticky element at which to attach HC-Sticky. This has higher priority than innerTop option. |
bottomEnd | 0 | int | The distance from the bottom of the referring element at which to stop HC-Sticky. |
stickTo | null (parent element) | string / element object | Element that represents the reference for height instead of height of the container. |
followScroll | true | boolean | When set to false , sticky content will not move with the page if it is bigger than Window. |
stickyClass | 'sticky' | string | HTML class that will be applied to sticky element while it is attached. |
queries | null | object | Object containing responsive breakpoints, on which you can tell HC Sticky what to do. |
onStart | null | function | Callback function fired when the element becomes attached. |
onStop | null | function | Callback function fired when the element stops floating. |
onBeforeResize | null | function | Callback function fired before sticky has been resized (happens after Window resize and before sticky reinit). |
onResize | null | function | Callback function fired after sticky has been resized (happens after Window resize and sticky reinit). |
resizeDebounce | 100 | int | Limit the rate at which the HC Sticky can fire on window resize. |
Methods are used to control the plugin after initialization.
Example:
var Sticky = new hcSticky('#element', {
stickTo: '#content'
});
Sticky.update({
top: 20
});
Method | Accepts | Description |
---|---|---|
options | string | Returns current settings, or a specific setting if you specify it. |
update | object | Updates the settings with the new ones. |
reinit | N/A | Recalculates sticky size and position. Useful after altering DOM elements inside sticky. |
detach | N/A | Detaches the HC-Sticky from element, preventing it from running. |
attach | N/A | Attaches the HC-Sticky back to the element. |
destroy | N/A | Completely destroys HC-Sticky and reverts element to original state. |
This package comes with Gulp. The following tasks are available:
default
compiles the JS into /dist
and builds the Demos into demo/build
.watch
watches source JS and Demo files and builds them automatically whenever you save.You can pass a --dev
command if you don't want the compiled JS to be minified.
The code and the documentation are released under the MIT License.
FAQs
JavaScript library that makes any element on your page visible while you scroll
The npm package hc-sticky receives a total of 548 weekly downloads. As such, hc-sticky popularity was classified as not popular.
We found that hc-sticky demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
pnpm 10 blocks lifecycle scripts by default to improve security, addressing supply chain attack risks but sparking debate over compatibility and workflow changes.
Product
Socket now supports uv.lock files to ensure consistent, secure dependency resolution for Python projects and enhance supply chain security.
Research
Security News
Socket researchers have discovered multiple malicious npm packages targeting Solana private keys, abusing Gmail to exfiltrate the data and drain Solana wallets.