Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
smooth-scroll-into-view-if-needed
Advanced tools
Ponyfill for smooth scrolling elements into view (if needed!)
This is an addon to scroll-into-view-if-needed
that ponyfills smooth scrolling.
And while scroll-into-view-if-needed
use the same default options as browsers and the spec does, this library is a bit more opinionated and include bonus features that help you build great UIs.
yarn add smooth-scroll-into-view-if-needed
The UMD build is also available on unpkg:
<script src="https://unpkg.com/smooth-scroll-into-view-if-needed/umd/smooth-scroll-into-view-if-needed.min.js"></script>
You can find the library on window.scrollIntoView
.
import scrollIntoView from 'smooth-scroll-into-view-if-needed'
const node = document.getElementById('hero')
// `options.behavior` is set to `smooth` by default so you don't have to pass options like in `scroll-into-view-if-needed`
scrollIntoView(node)
// combine it with any of the other options from 'scroll-into-view-if-needed'
scrollIntoView(node, {
scrollMode: 'if-needed',
block: 'nearest',
inline: 'nearest',
})
// a promise is always returned to help reduce boilerplate
const sequence = async () => {
const slide = document.getElementById('slide-3')
// First smooth scroll to hero
await scrollIntoView(node, { behavior: 'smooth' })
// Then we scroll to a slide in a slideshow
return scrollIntoView(slide, { behavior: 'smooth' })
}
This library rely on Promise
and requestAnimationFrame
. This library does not ship with polyfills for these to keep bundlesizes as low as possible.
Check the full API in scroll-into-view-if-needed
.
scroll-into-view-if-needed
does not return anything, while this library will return a Promise that is resolved when all of the scrolling boxes are finished scrolling.
The ability to cancel animations will be added in a future version.
Type: Object
Type: 'auto' | 'smooth' | Function
Default: 'smooth'
This option deviates from scroll-into-view-if-needed
in two ways.
smooth
instead of auto
smooth
adds it to browsers that miss it, and overrides the native smooth scrolling in the browsers that have it to ensure the scrolling is consistent in any browser.The options auto
or Function
behaves exactly like in scroll-into-view-if-needed
.
Type: number
Default: 300
Introduced in
v1.1.0
This setting is not a hard limit. The duration of a scroll differs depending on how many elements is scrolled, and the capabilities of the browser. On mobile the browser might pause or throttle the animation if the user switches to another tab. And there might be nothing to scroll. No matter the scenario a Promise is returned so you can await on it.
Type: Function
Introduced in
v1.1.0
The default easing is easeOutQuint
based on these algorithms: https://gist.github.com/gre/1650294#file-easing-js
Linear example:
scrollIntoView(node, {
ease: (t) => t,
})
Acceleration until halfway, then deceleration:
scrollIntoView(node, {
ease: (t) =>
t < 0.5 ? 4 * t * t * t : (t - 1) * (2 * t - 2) * (2 * t - 2) + 1,
})
Sine easing in and out:
scrollIntoView(node, {
ease: (t) => (1 + Math.sin(Math.PI * t - Math.PI / 2)) / 2,
})
FAQs
Ponyfill for smooth scrolling elements into view (if needed!)
We found that smooth-scroll-into-view-if-needed demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.