javascript-clients
sharp
| javascript-clients | sharp | |
|---|---|---|
| 5 | 118 | |
| 4 | 32,329 | |
| - | 0.5% | |
| - | 8.6 | |
| 16 days ago | 5 days ago | |
| TypeScript | JavaScript | |
| Apache License 2.0 | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
javascript-clients
-
Red Hat packages backdoored through its official NPM channel
List of affected packages: https://github.com/RedHatInsights/javascript-clients/issues/...
- npm Supply Chain Attacks, Pixel/Exynos Zero-Days, and Instagram Account Takeovers
- 31 paquetes npm de Red Hat comprometidos roban credenciales de nube
-
NPM packages from RedHat have been compromised
This repository itself had to previously update from the axios supply chain attack [0] (co-authored by Claude lol). But just by looking at the change itself, the package is unpinned and won't solve the problem if it happens again as a illegitimate "security update".
So if you have an unpinned version of this package and you run 'npm install', you immediately downloaded the compromised version and that's that.
[0] https://github.com/RedHatInsights/javascript-clients/commit/...
sharp
-
NPM packages from RedHat have been compromised
Some packages need to build native dependencies. sharp for example needs to build libvips on the system [0] to work
0: https://github.com/lovell/sharp/blob/main/install/build.js
-
Bun.Image
> The API is shaped after Sharp: construct from an input, chain transforms, pick an output format, then await a terminal method.
(https://sharp.pixelplumbing.com/)
Good! I like the pipeline workflow.
-
From Next.js 15 to SvelteKit: Why We Rewrote Rsale.net's Frontend
Image optimization. No next/image. We use sharp at upload time + a small wrapper with srcset. Less magic, more control.
- Sharp: High performance Node.js image processing/optimization
-
On-the-Fly Image Compression in NestJS vs Laravel Performance Implementation and Comparison
Sharp
-
On-the-Fly Image Compression Comparison Between NestJS and Laravel
Image minimization as part of a web API's delivery pipeline often leverages libraries like Sharp (Node.js) or Intervention Image (PHP). Such solutions:
-
How to create and serve image blur placeholders
Doing this in Node is simple, we'll use the popular sharp library to resize the image.
-
Jemalloc Postmortem
Hello, libvips author here. This is probably the canonical thread about libvips and memory fragmentation, and the funniest graph:
https://github.com/lovell/sharp/issues/955#issuecomment-5458...
(that specific graph is for switching from glib to the musl memory allocator, but jemalloc gives a very similar result)
-
Why Single Function Lambdas is a terrible choice for Serverless development.
For example, you might have a Lambda that powers your entire web server. Another for data crunching using an npm package that ships with a rust binary (node polars) leveraging multiple vCpus. A third might handle image processing with sharp, triggered by S3 uploads. And maybe another is dedicated to web scraping where you bundle a headless browser like Puppeteer as Layer to Lambda.
-
How To Fetch Image From Database and Display In React JS
Sharp: High Performance Node.js Image Processing Learn more about processing images on the backend if you need to handle large files or perform image manipulation.
What are some alternatives?
pgpverify-maven-plugin - Verify Open PGP / GPG signatures plugin
jimp - An image processing library written entirely in JavaScript for Node, with zero external or native dependencies.
platform-frontend-ai-toolkit - A set of helpful coding AI tooling for frontend development
gm - GraphicsMagick for node
package-manager-hardening - A non-exhaustive list of package manager hardening recommendations to help prevent supply chain vulnerability attacks. Includes AGENTS.md files and skills to enforce these recommendations.
pica - Resize image in browser with high quality and high speed