
Security News
minimatch Patches 3 High-Severity ReDoS Vulnerabilities
minimatch patched three high-severity ReDoS vulnerabilities that can stall the Node.js event loop, and Socket has released free certified patches.
Browser font-face generator for creating browser usable fonts from ttf's or otf's
From a ttf or otf, generate the required ttf, eot, woff, svg and css for the font to be used in browsers.
npm install --save-dev fontyy
fontforgebrew install fontforge
FontForge install procedures for unix/linux based systems: https://fontforge.github.io/nix-install.html
var fontyy = require('fontyy');
var result = fontyy({
source: '/path/to/source.{ttf,otf}',
dest: '/destination/folder/',
});
Path to the source font file in ttf or otf format.
Path to the destination folder for the converted fonts to be placed in.
Path to the destination file to write the generated stylesheet to.
Default: null (Guess the css filename from the font filename)
Path to the font files relative to the css generated.
Default: ''
A string or array with the characters desired to be included inside the generated fonts
Default: null
Append the source filename to the destination directory in order to collate generated fonts into separate directories.
Default: false
IE:
options = {
source: 'src/fonts/ariel.ttf',
dest: 'dist/fonts/',
collate: true
}
Will create fonts into 'dist/fonts/ariel/'.
Uses the PostScript names of fonts for generated font file and destination folder names.
Default: false
Minify the generated CSS @font-face codes.
Default: false
Type: array
Default: []
Valid values: ['woff', 'ttf']
Type of fonts to embed directly into the generated css file as a data-uri instead of creating files for them.
Font name, style and weight can be specified manually per font in a json file of the same name as the font.
For example, for the font: fonts/sans.ttf the config file would be: fonts/sans.json.
Example file format:
{
"name" : "Super Sans",
"weight" : "400",
"style" : "normal"
}
Note: If present, the json config file must be valid json.
var fs = require('fs');
var path = require('path');
var fontyy = require('./fontyy');
var source = 'tmp/';
var dest = 'tmp/dest/';
var fonts = fs.readdirSync(source);
for (var i = fonts.length - 1; i >= 0; i--) {
var font = fonts[i];
var extension = path.extname(font);
var fontname = path.basename(font, extension);
// Test with embedded ttf
if (extension == '.ttf' || extension == '.otf') {
fontyy({
source: path.join(source, font),
dest: dest,
css_fontpath: '../fonts/',
embed: ['ttf'],
subset: 'abcdef',
collate: true,
real_filename: false,
minifycss: false
});
}
};
FAQs
Browser font-face generator for creating browser usable fonts from ttf's or otf's
We found that fontyy demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Security News
minimatch patched three high-severity ReDoS vulnerabilities that can stall the Node.js event loop, and Socket has released free certified patches.

Research
/Security News
Socket uncovered 26 malicious npm packages tied to North Korea's Contagious Interview campaign, retrieving a live 9-module infostealer and RAT from the adversary's C2.

Research
An impersonated golang.org/x/crypto clone exfiltrates passwords, executes a remote shell stager, and delivers a Rekoobe backdoor on Linux.