rightimage
Advanced tools
This module is a small library for streaming dynamic images. Its key feature is to automatically detect and correct oritentation.
The library exposes a function that can be passed image processing options and will return a stream. We carefully arrange for error propogation and teardown of resources to ensure operation in servers is safe.
const fs = require("fs");
const rightImage = require("rightimage");
rightImage.createRightImagePipeline(
{
contentType: "image/jpeg",
imageOptions: {
setFormat: "png",
resize: "100,100"
},
inputStream: fs.createReadStream("./testdata/test.jpg")
},
(err, pipelineResult) => {
if (err) {
// call error handling code
return callback(err);
}
const { outputContentType, outputStream } = pipelineResult;
const outputFile = "./testdata/output/test_small.png";
const outputFileStream = fs.createWriteStream(outputFile);
outputFileStream.on("close", () => {
// call some callback to signify success
callback(null, `wrote an ${outputContentType} to path ${outputFile}`);
});
outputStream.pipe(outputFileStream);
}
);
'wrote an image/png to path ./testdata/output/test_small.png'
The example above would take the test JPEG file in the project repository and convert it to a 100x100 PNG write the output "wrote image/png". Since the source JPEG has an orientation, it will be oriented correctly without any additional steps required.
The primary trick is to read the first 128K bytes of the image on-the-fly and parse the EXIF data for the image oritentation. We use any present orientation data to calculate the correction required and trigger rotation via image processing libraries. The image data is never buffered.
This module is intended to be used in production situations for the dynamic conversion of untrusted image data; it is imperative that the library is safe. A great deal of emphasis has been placed on error codepath hardening and the validation of any operations that will be performed.
Every requested format conversion and transformation operation is checked against a set of whitelisted operations and the module will not proceed if these checks fail. This module will always prefer a safer feature subset.
Internally two modules are used to do the core image manipulation work.
This awesome library wraps multiple image libraries - those configured by rightimage are sharp and Gifsicle (for the correct conversion of all GIFs including those with animated frames).
We bypass the outer layer and instead use the lower-level "operations API" where we construct an array of operations and pass that directly into the core fo the library. Based on input options and input content-type, will construct a streaming pipeline that will perform the conversion.
In the case of JPEGs that require nothing more than an orientation change
we switch over to the jpegtran library to ensure we make a best effort to
best preserve the image quality.
FAQs
Stream images with dynamic re-orientation
The npm package rightimage receives a total of 1,962 weekly downloads. As such, rightimage popularity was classified as popular.
We found that rightimage demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Product
Socket Fix 2.0 brings targeted CVE remediation, smarter upgrade planning, and broader ecosystem support to help developers get to zero alerts.
Security News
Socket CEO Feross Aboukhadijeh joins Risky Business Weekly to unpack recent npm phishing attacks, their limited impact, and the risks if attackers get smarter.
Product
Socket’s new Tier 1 Reachability filters out up to 80% of irrelevant CVEs, so security teams can focus on the vulnerabilities that matter.