![Namecheap Takes Down Polyfill.io Service Following Supply Chain Attack](https://cdn.sanity.io/images/cgdhsj6q/production/6af25114feaaac7179b18127c83327568ff592d1-1024x1024.webp?w=800&fit=max&auto=format)
Security News
Namecheap Takes Down Polyfill.io Service Following Supply Chain Attack
Polyfill.io has been serving malware for months via its CDN, after the project's open source maintainer sold the service to a company based in China.
ipx
Advanced tools
Readme
High performance, secure and easy to use image proxy based on sharp and libvips.
You can use ipx
command to start server using:
$ npx ipx
You can use IPX as a Connect/Express middleware or directly use ipx api.
import { createIPX, createIPXMiddleware } from 'ipx'
const ipx = createIPX(/* options */)
const app = express()
app.use('/image', createIPXMiddleware(ipx))
Change format to webp
and keep other things same as source:
http://cdn.example.com/static/buffalo.png?format=webp
Keep original format (png
) and set width to 200
:
http://cdn.example.com/static/buffalo.png?width=200
Resize to 200x300px
using embed
method and change format to webp
:
http://cdn.example.com/static/buffalo.png?embed&format=webp&size=200x300
Modifier | Arguments | Example | Description |
---|---|---|---|
s | width , height | s_200_300 | Resize image. |
w | width | w_200 | Change image with. |
h | height | h_200 | Change image height. |
max | - | max | Preserving aspect ratio, resize the image to be as large as possible while ensuring its dimensions are less than or equal to the width and height specified. |
min | - | min | Preserving aspect ratio, resize the image to be as small as possible while ensuring its dimensions are greater than or equal to the width and height specified. |
Config can be customized using IPX_*
environment variables.
IPX_LOCAL_DIR
.
(current working directory)IPX_REMOTE_ACCEPT
[]
MIT
FAQs
High performance, secure and easy-to-use image optimizer.
The npm package ipx receives a total of 161,204 weekly downloads. As such, ipx popularity was classified as popular.
We found that ipx demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Polyfill.io has been serving malware for months via its CDN, after the project's open source maintainer sold the service to a company based in China.
Security News
OpenSSF is warning open source maintainers to stay vigilant against reputation farming on GitHub, where users artificially inflate their status by manipulating interactions on closed issues and PRs.
Security News
A JavaScript library maintainer is under fire after merging a controversial PR to support legacy versions of Node.js.