Security News
MCP Community Begins Work on Official MCP Metaregistry
The MCP community is launching an official registry to standardize AI tool discovery and let agents dynamically find and install MCP servers.
By Sarah Gooding - May 09, 2025
🚀 Big News: Socket Acquires Coana to Bring Reachability Analysis to Every Appsec Team.Learn more →
- Maintainers
- 1
svglab
A manipulation and optimization library for Scalable Vector Graphics
Table of Contents
About The Project
Features
- SVG parsing, manipulation, and writing
- Support for all SVG 1.1 elements and attributes
- Partial support for SVG 2
- Support for special XML entities (
CDATA, comments, text) - Attributes are parsed into native Python types for easy manipulation
- Highly configurable formatting options:
- indentation level
- maximum precision for floating-point numbers
- color mode (
rgb,rgba,hsl,hex,named) - relative/absolute path commands
- scientific notation for small/large numbers
- and many more...
- Strong type safety:
- one class per distinct SVG element
- typed attributes
- runtime validation thanks to pydantic
- Support for all beautifulsoup4 parsers (e.g.,
html.parser,lxml,html5lib) - SVG can be rendered into a raster image using resvg
- Support for calculating the bounding box and mask of an element
- Support for applying transformations in the
transformattribute ("reification")
---
title: Entity hierarchy
---
graph TD
Entity:::abc --> CharacterData
Entity --> Element
Element:::abc --> G
Element --> Svg
Element --> Rect
Element --> Circle
Element --> etc1[...]
CharacterData:::abc --> RawText
CharacterData --> Comment
CharacterData --> CData
etc1:::etc
classDef abc stroke:white,stroke-width:2px;
classDef etc stroke:gray,stroke-width:2px;
classDef default stroke:orange,stroke-width:2px;
Getting Started
Prerequisites
Installation
From PyPi:
pip install svglab
From source:
# Via HTTPS
pip install git+https://github.com/reznakt/svglab.git
# Via SSH
pip install git+ssh://git@github.com/reznakt/svglab.git
Usage
# Parse an existing SVG file
svg = parse_svg(
"""
<svg xmlns="http://www.w3.org/2000/svg" width="100" height="100">
<g>
<rect
id="background"
width="100cm"
height="100%"
transform="rotate(45)"
stroke="red"
/>
<rect color="hsl(0, 100%, 100%)"/>
<!-- This is a comment -->
<![CDATA[.background { fill: blue; }]]>
Hello SVG!
<path d="M 10,10 H 10 L 100,100 Q 100,100 50,50 v 100 Z"/>
<path d="M0,0 10,10 20,20 S 100,100 50,50 t 100,100 M 50,50 z"/>
<path d="M0,0A50,50 90 1 0 100,100v100h-10z"/>
<polygon points="0,0 100,0 100,100 0,100"/>
</g>
</svg>
"""
)
print(svg)
# Create an element programmatically
group = G().add_children(
Rect(
width=Length(15, "px"),
height=Length(20),
transform=[SkewX(45.123), Translate(10, 20)],
color=Color("#ff0000"),
),
Comment("This is a comment"),
CData(".background { fill: blue; }"),
RawText("Hello SVG!"),
Path(
d=D()
.move_to(Point(10, 10))
.line_to(Point(100, 100))
.quadratic_bezier_to(Point(100, 100), Point(50, 50))
.smooth_quadratic_bezier_to(Point(100, 100))
.move_to(Point(50, 50))
.cubic_bezier_to(
Point(100, 100), Point(100, 100), Point(10, 10)
)
.smooth_cubic_bezier_to(Point(100, 100), Point(50, 50))
.arc_to(
Point(50, 50), 90, Point(100, 100), large=True, sweep=False
)
.vertical_line_to(100)
.horizontal_line_to(-10, relative=True)
.close()
),
Polyline(
points=[
Point(0, 0),
Point(100, 0),
Point(100, 100),
Point(0, 100),
],
stroke_linecap="square",
opacity=0.5,
),
)
# Add the element to the SVG
svg.add_child(group)
# Manipulate attributes
print(svg.xmlns) # http://www.w3.org/2000/svg
svg.x = Length(10, "px")
# Save to a file
svg.save(sys.stdout)
# Search the entity tree
print(*svg.find_all(Rect), sep="\n")
rect = svg.find(G).find(Rect)
# Compute the bounding box and mask of an element
print(rect.get_bbox())
print(rect.get_mask())
# Render the SVG to an image
image = svg.render()
print(image)
# Apply transformations in the transform attribute
svg.reify()
print(svg.to_xml())
# Change the view box
svg.set_viewbox((0, 0, 50, 50))
print(svg.to_xml())
Development
Setup
# Install dependencies
poetry install
# Activate the virtual environment
poetry shell
# Optional: Install pre-commit hooks
pre-commit install
Common tasks
# Run tests
poe test
# Run type checker
poe typecheck
# Run linter
poe lint
# Fix linting errors
poe lint-fix
# Run formatter
poe format
# Fix formatting errors
poe format-fix
License
This software is distributed under the MIT License. See LICENSE for more information.
Keywords
FAQs
A manipulation and optimization library for Scalable Vector Graphics
We found that svglab demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
Security News
Malicious npm Packages Use Telegram to Exfiltrate BullX Credentials
Socket uncovers an npm Trojan stealing crypto wallets and BullX credentials via obfuscated code and Telegram exfiltration.
By Kush Pandya - May 08, 2025
Research
Security News
Backdooring the IDE: Malicious npm Packages Hijack Cursor Editor on macOS
Malicious npm packages posing as developer tools target macOS Cursor IDE users, stealing credentials and modifying files to gain persistent backdoor access.
By Kirill Boychenko - May 07, 2025