
Research
PyPI Package Disguised as Instagram Growth Tool Harvests User Credentials
A deceptive PyPI package posing as an Instagram growth tool collects user credentials and sends them to third-party bot services.
tooltipster
Advanced tools
A flexible and extensible jQuery plugin for modern tooltips by Caleb Jacob and Louis Ameline under MIT license.
Compatible with Mozilla Firefox, Google Chrome, IE6+ and others.
Requires jQuery 1.10+ (or less, see the compatibility note in the doc).
Default css + js files = 10Kb gzipped.
A reminder of options/methods lies below. For detailed documentation, visit http://iamceege.github.io/tooltipster/
animation
animationDuration
content
contentAsHTML
contentCloning
debug
delay
delayTouch
functionInit
functionBefore
functionReady
functionAfter
functionFormat
IEmin
interactive
multiple
plugins
repositionOnScroll
restoration
selfDestruction
timer
theme
trackerInterval
trackOrigin
trackTooltip
trigger
triggerClose
triggerOpen
updateAnimation
zIndex
(these are available when you use sideTip, the default plugin)
arrow
distance
functionPosition
maxWidth
minIntersection
minWidth
side
viewportAware
close([callback])
content([myNewContent])
destroy()
disable()
elementOrigin()
elementTooltip()
enable()
instance()
on, one, off, triggerHandler
open([callback])
option(optionName [, optionValue])
reposition()
status()
instances([selector || element])
instancesLatest()
on, one, off, triggerHandler
origins()
setDefaults({})
after
before
close
closing
created
destroy
destroyed
dismissable
format
geometry
init
state
ready
reposition
repositioned
scroll
start
startcancel
startend
updated
position
positionTest
positionTested
FAQs
A flexible and extensible jQuery plugin for modern tooltips.
The npm package tooltipster receives a total of 14,166 weekly downloads. As such, tooltipster popularity was classified as popular.
We found that tooltipster demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
A deceptive PyPI package posing as an Instagram growth tool collects user credentials and sends them to third-party bot services.
Product
Socket now supports pylock.toml, enabling secure, reproducible Python builds with advanced scanning and full alignment with PEP 751's new standard.
Security News
Research
Socket uncovered two npm packages that register hidden HTTP endpoints to delete all files on command.