
Security News
NIST Under Federal Audit for NVD Processing Backlog and Delays
As vulnerability data bottlenecks grow, the federal government is formally investigating NIST’s handling of the National Vulnerability Database.
react-trap-focus
Advanced tools
A react component to trap your focus for keyboard events.
It is as simple as wrapping your component with the FocusTrap and rest will be be taken care of.
Using npm:
$ npm i react-trap-focus
Using yarn:
$ yarn add react-trap-focus
There are 2 ways in which you can use it.
The default query selector is
[role="button"]
but you can pass whatever your application sees fit.
import { FocusTrap } from 'react-trap-focus'
<FocusTrap>
<Modal.Body>
// Do Something
</Modal.Body>
</FocusTrap>
import { FocusTrap } from 'react-trap-focus'
<FocusTrap querySelector={'div.highlighted > p'}>
// Do something / wrap any component
</FocusTrap>
The package also exposes focusTrap = (event: KeyboardEvent, elements: HTMLElement[])
function which can be used directly on keyboard events.
Pass the event and the elements list you want to be focus trapped.
import { focusTrap } from 'react-trap-focus'
const allButtonEls = document.querySelectorAll('[role="button"]')
const onKeyDown = event => focusTrap(event, allButtonEls)
return (
<div onKeyDown={onKeyDown}>
// Do something
</div>
)
FAQs
A react component to trap focus for accessibility
The npm package react-trap-focus receives a total of 18 weekly downloads. As such, react-trap-focus popularity was classified as not popular.
We found that react-trap-focus demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
As vulnerability data bottlenecks grow, the federal government is formally investigating NIST’s handling of the National Vulnerability Database.
Research
Security News
Socket’s Threat Research Team has uncovered 60 npm packages using post-install scripts to silently exfiltrate hostnames, IP addresses, DNS servers, and user directories to a Discord-controlled endpoint.
Security News
TypeScript Native Previews offers a 10x faster Go-based compiler, now available on npm for public testing with early editor and language support.