Installations
npm install dom-to-image-more
Developer Guide
Typescript
No
Module System
CommonJS
Node Version
19.9.0
NPM Version
9.6.3
Score
99.2
Supply Chain
100
Quality
82.5
Maintenance
100
Vulnerability
100
License
Releases
Contributors
Unable to fetch Contributors
Languages
JavaScript (74.83%)
C++ (21.26%)
HTML (1.9%)
CSS (0.86%)
C (0.35%)
Makefile (0.33%)
Shell (0.31%)
Roff (0.17%)
Developer
1904labs
Download Statistics
Total Downloads
4,921,728
Last Day
8,566
Last Week
64,464
Last Month
268,932
Last Year
2,315,897
GitHub Statistics
526 Stars
584 Commits
107 Forks
12 Watching
2 Branches
1 Contributors
Bundle Size
16.19 kB
Minified
5.63 kB
Minified + Gzipped
Package Meta Information
Latest Version
3.5.0
Package Id
dom-to-image-more@3.5.0
Unpacked Size
503.25 kB
Size
268.75 kB
File Count
130
NPM Version
9.6.3
Node Version
19.9.0
Publised On
16 Oct 2024
Total Downloads
Cumulative downloads
Total Downloads
4,921,728
Last day
-27.6%
8,566
Compared to previous day
Last week
-5.7%
64,464
Compared to previous week
Last month
26.9%
268,932
Compared to previous month
Last year
56.1%
2,315,897
Compared to previous year
Daily Downloads
Weekly Downloads
Monthly Downloads
Yearly Downloads
DOM to Image
Breaking Change Notice
The 3.x release branch included some breaking changes in the very infrequently used ability to configure some utility methods used in this internal processing of dom-to-image-more. As browsers have matured, many of the hacks we're accumulated over the years are not needed, or better ways have been found to handle some edge-cases. With the help of folks like @meche-gh, in #99 we're stripping out the following members:
.mimes
- was the not-very-comprehensive list of mime types used to handle inlining things.parseExtension
- was a method to extract the extension from a filename, used to guess mime types.mimeType
- was a method to map file extensions to mime types.dataAsUrl
- was a method to reassemble adata:
URI from a Base64 representation and mime type
The 3.x release branch should also fix more node compatibility and iframe
issues.
What is it
dom-to-image-more is a library which can turn arbitrary DOM node, including same origin and blob iframes, into a vector (SVG) or raster (PNG or JPEG) image, written in JavaScript.
This fork of dom-to-image by Anatolii Saienko (tsayen) with some important fixes merged. We are eternally grateful for his starting point.
Anatolii's version was based on domvas by Paul Bakaus and has been completely rewritten, with some bugs fixed and some new features (like web font and image support) added.
Moved to 1904labs organization from my repositories 2019-02-06 as of version 2.7.3
Installation
NPM
npm install dom-to-image-more
Then load
1/* in ES 6 */ 2import domtoimage from 'dom-to-image-more'; 3/* in ES 5 */ 4var domtoimage = require('dom-to-image-more');
Usage
All the top level functions accept DOM node and rendering options, and return promises,
which are fulfilled with corresponding data URLs.
Get a PNG image base64-encoded data URL and display right away:
1var node = document.getElementById('my-node'); 2 3domtoimage 4 .toPng(node) 5 .then(function (dataUrl) { 6 var img = new Image(); 7 img.src = dataUrl; 8 document.body.appendChild(img); 9 }) 10 .catch(function (error) { 11 console.error('oops, something went wrong!', error); 12 });
Get a PNG image blob and download it (using FileSaver, for example):
1domtoimage.toBlob(document.getElementById('my-node')).then(function (blob) { 2 window.saveAs(blob, 'my-node.png'); 3});
Save and download a compressed JPEG image:
1domtoimage 2 .toJpeg(document.getElementById('my-node'), { quality: 0.95 }) 3 .then(function (dataUrl) { 4 var link = document.createElement('a'); 5 link.download = 'my-image-name.jpeg'; 6 link.href = dataUrl; 7 link.click(); 8 });
Get an SVG data URL, but filter out all the <i>
elements:
1function filter(node) { 2 return node.tagName !== 'i'; 3} 4 5domtoimage 6 .toSvg(document.getElementById('my-node'), { filter: filter }) 7 .then(function (dataUrl) { 8 /* do something */ 9 });
Get the raw pixel data as a Uint8Array with every 4 array elements representing the RGBA data of a pixel:
1var node = document.getElementById('my-node'); 2 3domtoimage.toPixelData(node).then(function (pixels) { 4 for (var y = 0; y < node.scrollHeight; ++y) { 5 for (var x = 0; x < node.scrollWidth; ++x) { 6 pixelAtXYOffset = 4 * y * node.scrollHeight + 4 * x; 7 /* pixelAtXY is a Uint8Array[4] containing RGBA values of the pixel at (x, y) in the range 0..255 */ 8 pixelAtXY = pixels.slice(pixelAtXYOffset, pixelAtXYOffset + 4); 9 } 10 } 11});
Get a canvas object:
1domtoimage.toCanvas(document.getElementById('my-node')).then(function (canvas) { 2 console.log('canvas', canvas.width, canvas.height); 3});
Adjust cloned nodes before/after children are cloned sample fiddle
1const adjustClone = (node, clone, after) => { 2 if (!after && clone.id === 'element') { 3 clone.style.transform = 'translateY(100px)'; 4 } 5 return clone; 6}; 7 8const wrapper = document.getElementById('wrapper'); 9const blob = domtoimage.toBlob(wrapper, { adjustClonedNode: adjustClone });
All the functions under impl
are not public API and are exposed only for unit testing.
Rendering options
filter
A function taking DOM node as argument. Should return true if passed node should be included in the output (excluding node means excluding it's children as well). Not called on the root node.
adjustClonedNode
A function that will be invoked on each node as they are cloned. Useful to adjust nodes in any way needed before the conversion. Note that this be invoked before the onclone callback. The handler gets the original node, the cloned node, and a boolean that says if we've cloned the children already (so you can handle either before or after)
Sample use:
1 if (!after && clone.id === 'element') { 2 clone.style.transform = 'translateY(100px)'; 3 } 4 return clone; 5}
const wrapper = document.getElementById('wrapper'); const blob = domtoimage.toBlob(wrapper, { adjustClonedNode: adjustClone});
onclone
A function taking the cloned and modified DOM node as argument. It allows to make final adjustements to the elements before rendering, on the whole clone, after all elements have been individually cloned. Note that this will be invoked after all the onclone callbacks have been fired.
The cloned DOM might differ a lot from the original DOM, for example canvas will be replaced with image tags, some class might have changed, the style are inlined. It can be useful to log the clone to get a better senses of the transformations.
bgcolor
A string value for the background color, any valid CSS color value.
height, width
Height and width in pixels to be applied to node before rendering.
style
An object whose properties to be copied to node's style before rendering. You might want to check this reference for JavaScript names of CSS properties.
quality
A number between 0 and 1 indicating image quality (e.g. 0.92 => 92%) of the JPEG image. Defaults to 1.0 (100%)
cacheBust
Set to true to append the current time as a query string to URL requests to enable cache busting. Defaults to false
imagePlaceholder
A data URL for a placeholder image that will be used when fetching an image fails. Defaults to undefined and will throw an error on failed images
copyDefaultStyles
Set to true to enable the copying of the default styles of elements. This will make the process faster. Try disabling it if seeing extra padding and using resetting / normalizing in CSS. Defaults to true.
useCredentialFeatures
Allows optionally setting the useCredentials
option if the resource matches a pattern in
the useCredentialFilters
array.
scale
Scale value to be applied on canvas's ctx.scale()
on both x and y axis. Can be used to
increase the image quality with higher image size.
Alternative Solutions to CORS Policy Issue
Are you facing a CORS policy issue in your app? Don't worry, there are alternative solutions to this problem that you can explore. Here are some options to consider:
-
Use the option.corsImg support by passing images With this option, you can setup a proxy service that will process the requests in a safe CORS context.
-
Use third-party services like allOrigins. With this service, you can fetch the source code or an image in base64 format from any website. However, this method can be a bit slow.
-
Set up your own API service. Compared to third-party services like allOrigins, this method can be faster, but you'll need to convert the image URL to base64 format. You can use the "image-to-base64" package for this purpose.
-
Utilize server-side functions features of frameworks like Next.js. This is the easiest and most convenient method, where you can directly fetch a URL source within server-side functions and convert it to base64 format if needed.
By exploring these alternative solutions, you can overcome the CORS policy issue in your app and ensure that your images are accessible to everyone.
Browsers
It's tested on latest Chrome and Firefox (49 and 45 respectively at the time of writing),
with Chrome performing significantly better on big DOM trees, possibly due to it's more
performant SVG support, and the fact that it supports CSSStyleDeclaration.cssText
property.
Internet Explorer is not (and will not be) supported, as it does not support SVG
<foreignObject>
tag
Safari is not supported, as it uses a
stricter security model on <foreignObject
> tag. Suggested workaround is to use toSvg
and render on the server.`
Dependencies
Uses Object.hasOwn() so needs at least Chrome/Edge 93, Firefox 92, Opera 79. Safari 15.4 or Node 16.9.0
Source
Only standard lib is currently used, but make sure your browser supports:
- Promise
- SVG
<foreignObject>
tag
Tests
As of this v3 branch chain, the testing jig is taking advantage of the onclone
hook to
insert the clone-output into the testing page. This should make it a tiny bit easier to
track down where exactly the inlining of CSS styles against the DOM nodes is wrong.
Most importantly, tests only depend on:
- ocrad.js, for the parts when you can't compare images (due to the browser rendering differences) and just have to test whether the text is rendered
How it works
There might some day exist (or maybe already exists?) a simple and standard way of exporting parts of the HTML to image (and then this script can only serve as an evidence of all the hoops I had to jump through in order to get such obvious thing done) but I haven't found one so far.
This library uses a feature of SVG that allows having arbitrary HTML content inside of the
<foreignObject>
tag. So, in order to render that DOM node for you, following steps are
taken:
-
Clone the original DOM node recursively
-
Compute the style for the node and each sub-node and copy it to corresponding clone
- and don't forget to recreate pseudo-elements, as they are not cloned in any way, of course
-
Embed web fonts
-
find all the
@font-face
declarations that might represent web fonts -
parse file URLs, download corresponding files
-
base64-encode and inline content as
data:
URLs -
concatenate all the processed CSS rules and put them into one
<style>
element, then attach it to the clone
-
-
Embed images
-
embed image URLs in
<img>
elements -
inline images used in
background
CSS property, in a fashion similar to fonts
-
-
Serialize the cloned node to XML
-
Wrap XML into the
<foreignObject>
tag, then into the SVG, then make it a data URL -
Optionally, to get PNG content or raw pixel data as a Uint8Array, create an Image element with the SVG as a source, and render it on an off-screen canvas, that you have also created, then read the content from the canvas
-
Done!
Using Typescript
-
Use original
dom-to-image
type definitionnpm install @types/dom-to-image --save-dev
-
Create dom-to-image-more type definition (
dom-to-image-more.d.ts
)1declare module 'dom-to-image-more' { 2 import domToImage = require('dom-to-image-more'); 3 export = domToImage; 4}
Things to watch out for
-
if the DOM node you want to render includes a
<canvas>
element with something drawn on it, it should be handled fine, unless the canvas is tainted - in this case rendering will rather not succeed. -
at the time of writing, Firefox has a problem with some external stylesheets (see issue #13). In such case, the error will be caught and logged.
Authors
Marc Brooks, Anatolii Saienko (original dom-to-image), Paul Bakaus (original idea), Aidas Klimas (fixes), Edgardo Di Gesto (fixes), 樊冬 Fan Dong (fixes), Shrijan Tripathi (docs), SNDST00M (optimize), Joseph White (performance CSS), Phani Rithvij (test), David DOLCIMASCOLO (packaging), Zee (ZM) @zm-cttae (many major updates), Joshua Walsh @JoshuaWalsh (Firefox issues), Emre Coban @emrecoban (documentation), Nate Stuyvesant @nstuyvesant (fixes), King Wang @eachmawzw (CORS image proxy), TMM Schmit @tmmschmit (useCredentialsFilters), Aravind @codesculpture (fix overridden props), Shi Wenyu @cWenyu (shadow slot fix), David Burns @davidburns573 and Yujia Cheng @YujiaCheng1996 (font copy optional), Julien Dorra @juliendorra (documentation), Sean Zhang @SeanZhang-eaton (regex fixes)
License
MIT
No vulnerabilities found.
Reason
no dangerous workflow patterns detected
Reason
no binaries found in the repo
Reason
packaging workflow detected
Details
- Info: Project packages its releases by way of GitHub Actions.: .github/workflows/publish.yml:6
Reason
license file detected
Details
- Info: project has a license file: LICENSE:0
- Warn: project license file does not contain an FSF or OSI license.
Reason
SAST tool detected but not run on all commits
Details
- Info: SAST configuration detected: CodeQL
- Warn: 16 commits out of 20 are checked with a SAST tool
Reason
2 existing vulnerabilities detected
Details
- Warn: Project is vulnerable to: GHSA-7q7g-4xm8-89cq
- Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275
Reason
4 commit(s) and 3 issue activity found in the last 90 days -- score normalized to 5
Reason
dependency not pinned by hash detected -- score normalized to 5
Details
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis-v2.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/1904labs/dom-to-image-more/codeql-analysis-v2.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis-v2.yml:47: update your workflow using https://app.stepsecurity.io/secureworkflow/1904labs/dom-to-image-more/codeql-analysis-v2.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis-v2.yml:60: update your workflow using https://app.stepsecurity.io/secureworkflow/1904labs/dom-to-image-more/codeql-analysis-v2.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis-v2.yml:73: update your workflow using https://app.stepsecurity.io/secureworkflow/1904labs/dom-to-image-more/codeql-analysis-v2.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/1904labs/dom-to-image-more/publish.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/1904labs/dom-to-image-more/publish.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/verify.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/1904labs/dom-to-image-more/verify.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/verify.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/1904labs/dom-to-image-more/verify.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/verify.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/1904labs/dom-to-image-more/verify.yml/main?enable=pin
- Info: 0 out of 8 GitHub-owned GitHubAction dependencies pinned
- Info: 0 out of 1 third-party GitHubAction dependencies pinned
- Info: 3 out of 3 npmCommand dependencies pinned
Reason
Found 5/16 approved changesets -- score normalized to 3
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Info: jobLevel 'actions' permission set to 'read': .github/workflows/codeql-analysis-v2.yml:28
- Info: jobLevel 'contents' permission set to 'read': .github/workflows/codeql-analysis-v2.yml:29
- Info: jobLevel 'contents' permission set to 'read': .github/workflows/publish.yml:9
- Warn: no topLevel permission defined: .github/workflows/codeql-analysis-v2.yml:1
- Warn: no topLevel permission defined: .github/workflows/publish.yml:1
- Warn: no topLevel permission defined: .github/workflows/verify.yml:1
- Info: no jobLevel write permissions found
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
security policy file not detected
Details
- Warn: no security policy file detected
- Warn: no security file to analyze
- Warn: no security file to analyze
- Warn: no security file to analyze
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Score
5.6
/10
Last Scanned on 2024-12-23
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn MoreOther packages similar to dom-to-image-more
dom-to-image-more-scroll-fix
Generates an image from a DOM node using HTML5 canvas and SVG
dom-to-image-more-wc
Generates an image from a DOM node using HTML5 canvas and SVG
dom-to-image-more-fonts
Generates an image from a DOM node using HTML5 canvas and SVG
dom-to-image-more-v2
Generates an image from a DOM node using HTML5 canvas and SVG