Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@mux/videojs-kit
Advanced tools
The Video.js you know and love but optimized for using with Mux. The base is slimmed down a bit, then there are a few plugins included, namely Mux Data, and uses hls.js as the HLS playback engine. This is due to some issues we've seen with the default Vid
The Video.js you know and love but optimized for using with Mux. The base is slimmed down a bit, then there are a few plugins included, namely Mux Data, and uses hls.js as the HLS playback engine. This is due to some issues we've seen with the default Video.js playback engine and Mux streams.
This project is now also set up to allow usage with Video.js's playback engine VHS (Video.js HTTP Streaming). See how to include that in your project below.
// npm
npm install @mux/videojs-kit
// yarn
yarn add @mux/videojs-kit
If you don't use a package manager such as NPM, there are hosted versions provided by unpkg.com too.
If you use a package manager such as NPM, import the JavaScript and CSS in your application like this:
// include the video.js kit javascript and css
import videojs from '@mux/videojs-kit';
import '@mux/videojs-kit/dist/index.css';
// include the video.js kit javascript and css
import videojs from '@mux/videojs-kit/dist/index.vhs.js';
import '@mux/videojs-kit/dist/index.css';
<script>
tagsIf you'd rather use the hosted versions, include this in your HTML page:
// script tags
<script src="https://unpkg.com/@mux/videojs-kit@0.11.1/dist/index.js"></script>
<link rel="stylesheet" href="https://unpkg.com/@mux/videojs-kit@0.11.1/dist/index.css">
// script tags
<script src="https://unpkg.com/@mux/videojs-kit@0.11.1/dist/index.vhs.js"></script>
<link rel="stylesheet" href="https://unpkg.com/@mux/videojs-kit@0.11.1/dist/index.css">
In the below examples, replace the src
attribute example to reflect the playback ID of your choosing.
Then, on your page include a <video>
element where you want to add your player.
<video
id="mux-default"
class="video-js vjs-16-9"
controls
preload="auto"
width="100%"
poster="https://image.mux.com/DS00Spx1CV902MCtPj5WknGlR102V5HFkDe/thumbnail.jpg"
data-setup='{
"timelineHoverPreviews": true,
"plugins": {
"mux": {
"data": {
"env_key": "ENV_KEY",
"video_title": "My Great Video"
}
}
}
}'
>
<source src="DS00Spx1CV902MCtPj5WknGlR102V5HFkDe" type="video/mux" />
</video>
Of course, you can also initialize all of this via JS as well:
<video
id="mux-default"
class="video-js vjs-16-9"
controls
preload="auto"
width="100%"
poster="https://image.mux.com/DS00Spx1CV902MCtPj5WknGlR102V5HFkDe/thumbnail.jpg"
/>
<script type="text/javascript">
const player = videojs('mux-default', {
"timelineHoverPreviews": true,
"plugins": {
"mux": {
"data": {
"env_key": "ENV_KEY",
"video_title": "My Great Video"
}
}
}
});
player.src({ type: 'video/mux', src: 'DS00Spx1CV902MCtPj5WknGlR102V5HFkDe' });
</script>
A plugin for a quality levels menu is now included by default, however, it is not enabled by default.
To enable quality levels, you'll want to either specify it in the plugins
object, like above, or call the method directly on the player:
<video
id="mux-default"
class="video-js vjs-16-9"
controls
preload="auto"
width="100%"
poster="https://image.mux.com/DS00Spx1CV902MCtPj5WknGlR102V5HFkDe/thumbnail.jpg"
data-setup='{
"timelineHoverPreviews": true,
"plugins": {
"mux": {
"data": {
"env_key": "ENV_KEY",
"video_title": "My Great Video"
}
},
"httpSourceSelector": {}
}
}'
>
<source src="DS00Spx1CV902MCtPj5WknGlR102V5HFkDe" type="video/mux" />
</video>
const player = videojs.getPlayer('mux-default');
player.httpSourceSelector();
This is because most Video.js plugins depend directly on Video.js but by default Video.js Mux Kit uses hls.js by default and to maintain a smaller file-size we use Video.js's core
build which excludes VHS. You shouldn't need to do this if you're using the VHS build
This means that the Video.js that is used by Video.js Mux Kit references video.js/core
instead of video.js
. To get plugins to work, you'll need to make sure that plugins are also loading in video.js/core
instead of only video.js
. Most bundlers have some way of configuring these type of aliases.
For webpack, you can use the resolve
configuration option:
config.resolve = {
alias: {
'video.js': 'video.js/core',
}
};
This is how Video.js Mux Kit builds out the hls.js and VHS builds internally, see our webpack config.
For rollup, you'll want to grab their alias plugin, and then configure it into the plugins array like so:
module.exports = {
input: 'src/index.js',
output: {
dir: 'output',
format: 'cjs'
},
plugins: [
alias({
entries: [
{ find: 'video.js', replacement: require.resolve('video.js/core') }
]
})
]
};
Also, the demos are a great place to more references! In general, you can expect this to work almost exactly like Video.js + Mux Data with a few extra niceties. Mux streams can be specified by simply including the playback ID as the src
, and video/mux
as the type.
To run the demos, you can run npm run dev
or npm run dev:vhs
for running with VHS.
Once the dev server is running, open http://localhost:8080/{file}
with {file}
being one the demos like basic.html
or data.html
.
FAQs
The Video.js you know and love but optimized for using with Mux. The base is slimmed down a bit, then there are a few plugins included, namely Mux Data, and uses hls.js as the HLS playback engine. This is due to some issues we've seen with the default Vid
The npm package @mux/videojs-kit receives a total of 4,736 weekly downloads. As such, @mux/videojs-kit popularity was classified as popular.
We found that @mux/videojs-kit demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.