Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
mediaelement-plugins
Advanced tools
This repository contains plugins built for MediaElementJS.
2.3.0
versionAs part of the continuous improvements the player, we have decided to drop completely support for IE9 and IE10, since market share of those browsers together is 0.4%, according to https://caniuse.com/usage-table.
This change is for MediaElement
and MediaElement Plugins
repositories.
Download the package from https://github.com/mediaelement/mediaelement-plugins, and reference any plugins you need from dist
folder and add any configuration related to the plugin.
Or you can use a CDN; check https://cdnjs.com/libraries/mediaelement-plugins.
For example, if you want to install Speed
plugin do the following:
<script src="/path/to/mediaelement-and-player.min.js"></script>
<!-- Include any languages from `build/lang` folder -->
<script src="/path/to/dist/speed/speed.min.js"></script>
<!-- Translation file for plugin (includes ALL languages available on player)-->
<script src="/path/to/dist/speed/speed-i18n.js"></script>
<script>
var player = new MediaElementPlayer('playerId', {
defaultSpeed: 0.75,
// other configuration elements
});
</script>
Some of them will contain CSS styles so place them after the main player stylesheet:
<link rel="stylesheet" href="/path/to/mediaelementplayer.min.css">
<link rel="stylesheet" href="/path/to/dist/speed/speed.min.css">
Download it at https://nodejs.org/ and follow the steps to install it, or install node.js
with npm
.
Once installed, at the command prompt, type npm install
, which will download all the necessary tools.
/src/
directory, and NEVER in /dist/
directory. This is with the sole purpose of facilitating the merging (and further, the compiling) operation, and help people to see changes more easily.npm run eslint
to ensure code quality.loop/loop.js
).package.json
with a command under the script
configuration to make sure it will be bundled and compiled properly. For more reference, review the file.docs/FEATURE_NAME.md
file describing its purpose, API, etc., and add the name with a link to its document in the README
file to keep documentation up-to-date.MediaElement
provides for DOM manipulation/AJAX/etc. Check this link for more details..mejs__[feature_name], .mejs-[feature_name] {
// all your styles
}
'use strict';
/**
* [Name of feature]
*
* [Description]
*/
// If plugin needs translations, put here English one in this format:
// mejs.i18n.en["mejs.id1"] = "String 1";
// mejs.i18n.en["mejs.id2"] = "String 2";
// Feature configuration
Object.assign(mejs.MepDefaults, {
// Any variable that can be configured by the end user belongs here.
// Make sure is unique by checking API and Configuration file.
// Add comments about the nature of each of these variables.
});
Object.assign(MediaElementPlayer.prototype, {
// Public variables (also documented according to JSDoc specifications)
/**
* Feature constructor.
*
* Always has to be prefixed with `build` and the name that will be used in MepDefaults.features list
* @param {MediaElementPlayer} player
* @param {HTMLElement} controls
* @param {HTMLElement} layers
* @param {HTMLElement} media
*/
build[feature_name] (player, controls, layers, media) {
// This allows us to access options and other useful elements already set.
// Adding variables to the object is a good idea if you plan to reuse
// those variables in further operations.
const t = this;
// All code required inside here to keep it private;
// otherwise, you can create more methods or add variables
// outside of this scope
},
// Optionally, each feature can be destroyed setting a `clean` method
/**
* Feature destructor.
*
* Always has to be prefixed with `clean` and the name that was used in MepDefaults.features list
* @param {MediaElementPlayer} player
* @param {HTMLElement} controls
* @param {HTMLElement} layers
* @param {HTMLElement} media
*/
clean[feature_name] (player, controls, layers, media) {}
// Other optional public methods (all documented according to JSDoc specifications)
});
If translatable strings are part of the plugin, you will need to create a [feature_name]-i18n.js
file with this format:
'use strict';
if (mejs.i18n.ca !== undefined) {
mejs.i18n.ca["mejs.id1"] = "";
}
if (mejs.i18n.cs !== undefined) {
mejs.i18n.cs["mejs.id1"] = "";
}
// And the rest of the languages
NOTE: The more languages are integrated on MediaElementPlayer
, the bigger this template will become.
Also, if you are adding a new language to MediaElementPlayer
, you will need to add it in all the existing i18n
files in the same way described in the template above.
ES6
for FeaturesAll the features are written using Ecmascript 2015
specifications.
Seesrc/
directory, and check how the files were written to ensure compatibility.
Note: the for...of
loop could have been used, but in order to bundle them and reduce the size of the bundled files, it is strongly recommended to avoid its use.
Changes available at Change Log
3.0.0 (2024/03/06)
iconPath
: By setting the iconPath
option, you can specify the path to your SVG icon. Once set, an inline SVG icon will be dynamically generated and displayed on the quality button. Further information can be found here.iconPath
option, the quality button will continue to operate as before, displaying the default quality value as its text.iconSpritePath
: This option enables you to define the path to your SVG icon sprite. When specified, it allows for dynamic generation of inline SVG icons, which will be displayed on the audio and/or video description buttons. Further information can be found here.iconSpritePath
and your current setup includes background icons defined in CSS, you'll need to make a small but crucial update to your CSS file. Please remove any CSS rules that apply background icons to these buttons. This step is necessary to prevent the display of both SVG and background icons simultaneously.FAQs
# MediaElement.js Plugins
The npm package mediaelement-plugins receives a total of 1,229 weekly downloads. As such, mediaelement-plugins popularity was classified as popular.
We found that mediaelement-plugins demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.