Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
broccoli-webp
Advanced tools
This Broccoli plugin converts JPEG/PNG files to WebP.
Install just like any other broccoli plugin:
npm install --save-dev broccoli-webp
cwebp-bin is listed as an optional dependency.
If you can't install it, install cwebp manually:
pkg install graphics/webp
brew install webp
sudo apt-get install webp
var Webp = require('broccoli-webp')
var outputNode = new Webp(inputNode, options)
inputNode
: A node (tree) that contains the images you want to convert.options
: A hash of options. Currently supported:
quality
(number, 0..100): compression quality for JPEGs (PNGs are converted to lossless WebP)alphaQuality
(number, 0..100): transparency qualitycompression
(number, 0 -- fast, 6 -- slowest): compression strengthvar Webp = require('broccoli-webp')
var img = 'img'
var webp = new Webp(img, {quality: 80})
return [img, webp]
Please feel free to submit pull requests!
By participating in this project you agree to follow the Contributor Code of Conduct.
This is free and unencumbered software released into the public domain.
For more information, please refer to the UNLICENSE
file or unlicense.org.
FAQs
JPEG/PNG to WebP converter for Broccoli
The npm package broccoli-webp receives a total of 0 weekly downloads. As such, broccoli-webp popularity was classified as not popular.
We found that broccoli-webp demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.