Security News
tea.xyz Spam Plagues npm and RubyGems Package Registries
Tea.xyz, a crypto project aimed at rewarding open source contributions, is once again facing backlash due to an influx of spam packages flooding public package registries.
svg-captcha-fixed
Advanced tools
Readme
generate svg captcha in node.js
Note:
This package is originally developed by @steambap, repo here. This package is a fork of the original repo, which seems no longer maintained by the author.
This fork fixes a fatal bug which cause easily machine recognition, issue here, PR here. The author didn't reply to the issue and PR yet.
npm install --save svg-captcha
var svgCaptcha = require('svg-captcha');
var captcha = svgCaptcha.create();
console.log(captcha);
// {data: '<svg.../svg>', text: 'abcd'}
with express
var svgCaptcha = require('svg-captcha');
app.get('/captcha', function (req, res) {
var captcha = svgCaptcha.create();
req.session.captcha = captcha.text;
res.type('svg');
res.status(200).send(captcha.data);
});
svgCaptcha.create(options)
If no option is passed, you will get a random string of four characters and corresponding svg.
size
: 4 // size of random stringignoreChars
: '0o1i' // filter out some characters like 0o1inoise
: 1 // number of noise linescolor
: true // characters will have distinct colors instead of grey, true if background option is setbackground
: '#cc9966' // background color of the svg imageThis function returns an object that has the following property:
data
: string // svg path datatext
: string // captcha textsvgCaptcha.createMathExpr(options)
Similar to create api, you have the above options plus 3 additional:
mathMin
: 1 // the minimum value the math expression can bemathMax
: 9 // the maximum value the math expression can bemathOperator
: + // The operator to use, +
, -
or +-
(for random +
or -
)This function returns an object that has the following property:
data
: string // svg of the math expressiontext
: string // the answer of the math expressionsvgCaptcha.loadFont(url)
Load your own font and override the default font.
url
: string // path to your font
This api is a wrapper around loadFont api of opentype.js.
Your may need experiment around various options to make your own font accessible.
See the following api.svgCaptcha.options
Gain access to global setting object. It is used for create and createMathExpr api as the default options.
In addition to size, noise, color, and background, you can also set the following property:
width
: number // width of captchaheight
: number // height of captchafontSize
: number // captcha text sizecharPreset
: string // random character presetsvgCaptcha.randomText([size|options])
return a random string.
svgCaptcha(text, options)
return a svg captcha based on text provided.
In pre 1.1.0 version you have to call these two functions, now you can call create() to save some key strokes ;).
default captcha image:
math expression image with color options:
It does not require any c++ addon. The result image is smaller than jpeg image.
This has to be a joke. /<text.+>;.+</text>/g.test...
svg captcha uses opentype.js underneath, which means that there is no '<text>1234</text>'. You get '<path fill="#444" d="M104.83 19.74L107.85 19.74L112 33.56L116.13 19.74L119.15 19.74L113.48 36.85...' instead.
Even though you can write a program that convert svg to png, svg captcha has done its job —— make captcha recognition harder
FAQs
generate svg captcha in node.js or express.js
The npm package svg-captcha-fixed receives a total of 155 weekly downloads. As such, svg-captcha-fixed popularity was classified as not popular.
We found that svg-captcha-fixed demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Tea.xyz, a crypto project aimed at rewarding open source contributions, is once again facing backlash due to an influx of spam packages flooding public package registries.
Security News
As cyber threats become more autonomous, AI-powered defenses are crucial for businesses to stay ahead of attackers who can exploit software vulnerabilities at scale.
Security News
UnitedHealth Group disclosed that the ransomware attack on Change Healthcare compromised protected health information for millions in the U.S., with estimated costs to the company expected to reach $1 billion.