Research
Recent Trends in Malicious Packages Targeting Discord
The Socket research team breaks down a sampling of malicious packages that download and execute files, among other suspicious behaviors, targeting the popular Discord platform.
Readme
A small (~1KB gzip), performance optimized module for parallax image backgrounds. Aims to be as straight forward and semantic as possible, without tricks, hacks, element clones, layout thrashing, etc.
Yarn:
yarn add prlx
NPM:
npm install prlx --save
Manually:
<script src="dist/prlx.js"></script>
Argument | Required | Description |
---|---|---|
item | Yes | Selector string for parent element |
image | Yes | Selector string for image element inside parent |
<div class="example">
<div class="img"></div>
</div>
prlx('.example', '.img');
This plugin is intented to be used for image backgrounds. There has to be a parent element (to hide the parallax overflow), and a child element. See example above. Naturally, some styling has to be involved. There isn't any bundled CSS file or activated style through JavaScript, to give as much freedom as possible. However, these are the required style rules to work as intended:
$parallax-space: 20%; // Example, can be anything
.example {
height: $element-height;
overflow: hidden;
position: relative;
.img {
background-image: url('image.jpg');
height: 100% + $parallax-space;
position: absolute; /* 1 */
top: -($parallax-space / 2);
width: 100%; // Example, can be anything
}
}
These are additional recommended styles rules:
.example {
.img {
background-position: 50%;
background-size: cover;
display: none; /* 2 */
will-change: transform; /* 3 */
}
}
When there are other libraries/scripts at work who influence the DOM after prlx
is done calculating its values, it may be necessary to recalculate values. This can be done at any time:
const example = prlx('.example', '.img');
...
example.recalculate();
Positions will be recalculated when the browser is resized. That means orientation changes on tablets and media queries on the element can be done safely.
As pointed out before, this plugin aims to be as performant as possible. Therefore, browsers that don't implement requestAnimationFrame
are not supported.
iOS 7 is not supported, since DOM painting is paused during scroll events which doesn't play well with parallax scrolling.
Fallback is gracious, since the image will just be displayed normally.
FAQs
Small, performance optimized module for parallax image backgrounds.
The npm package prlx receives a total of 20 weekly downloads. As such, prlx popularity was classified as not popular.
We found that prlx demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
The Socket research team breaks down a sampling of malicious packages that download and execute files, among other suspicious behaviors, targeting the popular Discord platform.
Security News
Socket CEO Feross Aboukhadijeh joins a16z partners to discuss how modern, sophisticated supply chain attacks require AI-driven defenses and explore the challenges and solutions in leveraging AI for threat detection early in the development life cycle.
Security News
NIST's new AI Risk Management Framework aims to enhance the security and reliability of generative AI systems and address the unique challenges of malicious AI exploits.