
Security News
GitHub Actions Supply Chain Attack Puts Thousands of Projects at Risk
A compromised GitHub Action exposed secrets in CI/CD logs, putting thousands of projects at risk and forcing developers to urgently secure their workflows.
@adonesp/rollup-plugin-image-base64
Advanced tools
Import JPG, PNG and GIF images as base64 strings
Import JPG, PNG, GIF and SVG files.
Fork of rollup-plugin-image to skip the part in which a new Image()
is created and just return the base64 as String
npm install --save-dev rollup-plugin-image-base64
// rollup.config.js
import imageBase64 from 'rollup-plugin-image-base64';
export default {
entry: 'src/index.js',
dest: 'dist/my-lib.js',
plugins: [
imageBase64()
]
};
You can now use images in your bundle like so:
import logo from './rollup.png';
console.log(logo); // base64 of image as String
Images are encoded using base64, which means they will be 33% larger than the size on disk. You should therefore only use this for small images where the convenience of having them available on startup (e.g. rendering immediately to a canvas without co-ordinating asynchronous loading of several images) outweighs the cost.
MIT
Original code by Rich Harris
FAQs
Import JPG, PNG and GIF images as base64 strings
The npm package @adonesp/rollup-plugin-image-base64 receives a total of 2 weekly downloads. As such, @adonesp/rollup-plugin-image-base64 popularity was classified as not popular.
We found that @adonesp/rollup-plugin-image-base64 demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
A compromised GitHub Action exposed secrets in CI/CD logs, putting thousands of projects at risk and forcing developers to urgently secure their workflows.
Research
Security News
A malicious Maven package typosquatting a popular library is secretly stealing OAuth credentials on the 15th of each month, putting Java developers at risk.
Security News
Socket and Seal Security collaborate to fix a critical npm overrides bug, resolving a three-year security issue in the JavaScript ecosystem's most popular package manager.