
Security News
Risky Biz Podcast: AI Agents Are Raising the Stakes for Software Supply Chain Security
Open source attacks are accelerating as AI coding agents pull in dependencies faster, with less human review.
#use document
https://kangaoxiaoshi.github.io/mscroll/
npm install mscroll --save
1. npm run build
1. browserify mscroll.js --deubg > bundle.js
1. in browser use bundle.js
##dependency
zepto-modules
.pull
var Pull = mScroll.pull;
var refresh = new Pull ('.js-content', {
msgElement: '.js-msgwrap',
msgs: ['下拉刷新.....', '释放刷新'],
distance: 10,
start: function () {
//console.info('start');
},
move: function () {
//console.info('move');
},
end: function () {
//console.info('end');
},
onRefresh: function () {
let ul = document.querySelector('.js-ul');
let random = 1;
// after refresh do something you want
setTimeout(() => {
this.backTop();
ul.innerHTML = '';
for (let i = 0; i< 25; i++) {
random = (Math.random() * (20 - 1) + 1).toFixed(0);
ul.innerHTML +=`<li>
我是刷新后内容${random}
</li>`;
}
}, 1000);
}
});
required selector or document.element where to place the refresh state message.function when start pull fire this function.function when pulling fire this function.function when finish pull fire this function.function after pull do what you want in this function..more
var load = new More ('.js-content', {
main: '.js-content',
more: function () {
//load more function
console.log('load more');
}
});
required part of main this.el is $('.js-content'). this.$main.off('scroll').on('scroll', _.throttle((e) => {
if (this.el && this.el.getBoundingClientRect().bottom < document.body.clientHeight + 25) {
this.$el.trigger('load-bottom');
}
}, 200));
required selector or document.element which to add scroll.FAQs
mScroll pull down refresh, pull up load more.
The npm package mscroll receives a total of 5 weekly downloads. As such, mscroll popularity was classified as not popular.
We found that mscroll demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Security News
Open source attacks are accelerating as AI coding agents pull in dependencies faster, with less human review.

Research
/Security News
Malicious Chrome and Firefox extensions posed as free VPNs while stealing clipboard data through later extension updates.

Research
/Security News
Miasma Mini Shai-Hulud hits @immobiliarelabs Backstage plugins, targeting GitLab and LDAP auth packages on npm.