Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
react-pointer-type
Advanced tools
React hooks for adapting to pointer type changes. The correct alternative to feature detection.
A tiny (442 B), zero dependency React hook for adapting to pointer type changes. The correct alternative to feature detection.
Web browsers can be used with different pointing devices. These pointing devices have different precisions and features. Touch, for example, is a crude pointing device which also occludes much of the screen. While pens are more precise, just like touch, they often lack hovering, which leads to "sticky" :hover
states when the device tries to emulate the behavior. You need to adjust your UI to the needs of each of them.
To solve these problems, developers often use crude ways to detect whether a device is used with a touch screen, or with a mouse.
The issue with this solution is that modern devices like Microsoft Surface laptops or the iPad Pro not only support all three, but are routinely used with mouse, touch and pen inputs all in the same session. This renders traditional feature detection inadequate. You need to check for the pointing device in use right now, and react to changes in real time.
This library is an easy way to achieve that.
yarn add react-pointer-type
/* App.css */
.mouse .pointer-indicator {
background: red;
}
.touch .pointer-indicator {
background: blue;
}
.pen .pointer-indicator {
background: green;
}
import React from 'react';
import './App.css';
import { usePointerType } from 'react-pointer-type';
function App() {
const inputType = usePointerType({
attachClass: true,
});
return (
<div>
<div>Current pointer type: {inputType}</div>
<div className="pointer-indicator">
This div is red for mouse, blue for touch and green for pen.
</div>
</div>
);
}
export default App;
usePointerType(options)
Returns the current pointer type and optionally attaches the corresponding class to the document element.
options.initial: string = 'mouse'
: when the website is loaded, the pointing device is not known initially. You can set the default here.
options.updateOn: PointerEventType = 'pointerdown'
: specifies which pointer event type to use for updating.
options.attachClass: boolean = false
: whether to attach a class to the document element. Useful if you want to change the styles based on the pointer type. The possible classes are .mouse
, .pen
and .touch
.
options.classPrefix: string = ''
: what prefix to use for the class. Useful to avoid name collisions.
pointerType: PointerType
: the current pointer type.
type PointerType = 'mouse' | 'pen' | 'touch';
type PointerEventType =
| 'pointerover'
| 'pointerenter'
| 'pointerdown'
| 'pointermove'
| 'pointerup'
| 'pointercancel'
| 'pointerout'
| 'pointerleave'
| 'gotpointercapture'
| 'lostpointercapture';
The library checks the pointerType
property on pointer events. Pointer events are supported by all modern browsers and Safari.
FAQs
React hooks for adapting to pointer type changes. The correct alternative to feature detection.
The npm package react-pointer-type receives a total of 7 weekly downloads. As such, react-pointer-type popularity was classified as not popular.
We found that react-pointer-type demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.