Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
imagemin-gif2webp
Advanced tools
Gif2webp imagemin plugin
$ npm install --save imagemin-gif2webp
const imagemin = require('imagemin');
const imageminGif2webp = require('imagemin-gif2webp');
imagemin(['images/*.gif'], 'build/images', {
use: [
imageminGif2webp({quality: 50})
]
}).then(() => {
console.log('Images optimized');
});
Type: boolean
Default: false
Encode image using lossy compression.
Type: boolean
Default: false
For each frame in the image, pick lossy or lossless compression heuristically.
Type: number
Default: 75
Quality factor between 0
and 100
.
Type: number
Default: 4
Specify the compression method to use, between 0
(fastest) and 6
(slowest).
Type: boolean
Default: false
Minimize output size. Lossless compression by default; can be combined with quality
, method
, lossy
or mixed
options.
Type: number
Min distance between key frames.
Type: number
Max distance between key frames.
Type: number
Filter strength between 0
(off) and 100
.
Type: string
Default: xmp
Comma separated list of metadata to copy from the input to the output if present. Valid values: all
, none
, icc
, xmp
.
Type: boolean
Default: false
Use multi-threading if available.
Type: buffer
Buffer to optimize.
MIT © imagemin
FAQs
gif2webp imagemin plugin
The npm package imagemin-gif2webp receives a total of 9,439 weekly downloads. As such, imagemin-gif2webp popularity was classified as popular.
We found that imagemin-gif2webp demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 7 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.