npmpackage.info

Gathering detailed insights and metrics for electron-sharp

Other packages similar to electron-sharp

@electron-fonts/material-icons-sharp

1.2.0

Material Icons Sharp font injector to electron aplications.

@electron-fonts/material-symbols-sharp

1.2.0

Material Symbols Sharp font injector to electron aplications.

sharp-electron

0.33.6

High performance Node.js image processing, the fastest module to resize JPEG, PNG, WebP, GIF, AVIF and TIFF images

@hackolade/sharp-darwin-x64

0.33.5-2

Re-published version to have all prebuilds defined as npm packages without platform constraints for cross building an Electron application - Prebuilt sharp for use with macOS x64

Gathering detailed insights and metrics for electron-sharp

electron-sharp - 0.20.8 | npmpackage.info

electron-sharp

High performance Node.js image processing, the fastest module to resize JPEG, PNG, WebP, AVIF and TIFF images. Uses the libvips library.

0.20.8

30,363

Apache-2.0

JavaScript

18.40 kB

1,832 6.7

Installations

npm install electron-sharp

Developer Guide

BETA

Typescript

No

Module System

CommonJS

Min. Node Version

>=4.5.0

Node Version

8.11.1

NPM Version

5.6.0 Score

67.3

Supply Chain

96.3

Quality

70.4

Maintenance

Vulnerability

80.6

License

Pull Requests

Open

2

Total

432

Closed

136

Merged

294

Issues

Open

114

Total

3,941

Closed

3,827

Releases

v0.34.1

Updated on Apr 07, 2025

v0.34.0

Updated on Apr 04, 2025

v0.34.0-rc.1

Updated on Apr 03, 2025

v0.34.0-rc.0

Updated on Mar 16, 2025

v0.33.5

Updated on Aug 16, 2024

v0.33.5-rc.1

Updated on Aug 14, 2024

View All 92 releases

Languages

JavaScript

C++

TypeScript

Python

Shell

Dockerfile

JavaScript (76.35%)

C++ (20.2%)

TypeScript (2.02%)

Python (1.16%)

Shell (0.11%)

C (0.08%)

Dockerfile (0.08%)

Developer

lovell

Download Statistics

Total Downloads

1,832

Last Day

Last Week

Last Month

Last Year

120

GitHub Statistics

Apache-2.0 License

30,363 Stars

2,215 Commits

1,330 Forks

230 Watchers

3 Branches

215 Contributors

Updated on May 09, 2025

Bundle Size

62.19 kB

Minified

18.40 kB

Minified + Gzipped

Bundlephobia

Maintainers

View All 215 Contributors

Package Meta Information

Latest Version

0.20.8

Package Id

electron-sharp@0.20.8

Unpacked Size

1.36 MB

Size

511.62 kB

File Count

NPM Version

5.6.0

Node Version

8.11.1

Total Downloads

Cumulative downloads

Total Downloads

1,832

Last Day

Compared to previous day

Last Week

100%

Compared to previous week

Last Month

-21.1%

Compared to previous month

Last Year

-11.1%

120

Compared to previous year

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

color detect-libc nan fs-copy-file-sync npmlog prebuild-install semver simple-get tar tunnel-agent

Dev Dependencies

async cc decompress-zip documentation exif-reader icc mocha nyc prebuild prebuild-ci rimraf semistandard

sharp (electron-sharp only for Electron app)

1npm install sharp

1yarn add sharp

The typical use case for this high speed Node.js module is to convert large images in common formats to smaller, web-friendly JPEG, PNG and WebP images of varying dimensions.

Resizing an image is typically 4x-5x faster than using the quickest ImageMagick and GraphicsMagick settings.

Colour spaces, embedded ICC profiles and alpha transparency channels are all handled correctly. Lanczos resampling ensures quality is not sacrificed for speed.

As well as image resizing, operations such as rotation, extraction, compositing and gamma correction are available.

Most modern 64-bit OS X, Windows and Linux (glibc) systems running Node versions 4, 6, 8 and 10 do not require any additional install or runtime dependencies.

Examples

1const sharp = require('sharp')
2
3const options = {
4  ...otherSharpOptions,
5  iccProfilePath: 'path/to/unpacked/icc/libs/on/electron/production/app',
6};

1sharp(inputBuffer, options)
2  .resize(320, 240)
3  .toFile('output.webp', (err, info) => ... );
4  // A Promises/A+ promise is returned when callback is not provided.

1sharp('input.jpg', options)
2  .rotate()
3  .resize(200)
4  .toBuffer()
5  .then( data => ... )
6  .catch( err => ... );

1const roundedCorners = Buffer.from(
2  '<svg><rect x="0" y="0" width="200" height="200" rx="50" ry="50"/></svg>'
3);
4
5const roundedCornerResizer =
6  sharp()
7    .resize(200, 200)
8    .overlayWith(roundedCorners, { cutout: true })
9    .png();
10
11readableStream
12  .pipe(roundedCornerResizer)
13  .pipe(writableStream);

Documentation

Visit sharp.pixelplumbing.com for complete installation instructions, API documentation, benchmark tests and changelog.

Contributing

A guide for contributors covers reporting bugs, requesting features and submitting code changes.

Licence

Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.

No vulnerabilities found.

10

Security-Policy

Determines if the project has published a security policy.

10

Maintained

Determines if the project is "actively maintained".

10

Dangerous-Workflow

Determines if the project's GitHub Action workflows avoid dangerous patterns.

10

Token-Permissions

Determines if the project's workflows follow the principle of least privilege.

10

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

10

License

Determines if the project has defined a license.

10

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

10

Fuzzing

Determines if the project uses fuzzing.

1

Code-Review

Determines if the project requires human code review before pull requests (aka merge requests) are merged.

0

CII-Best-Practices

Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.

0

Signed-Releases

Determines if the project cryptographically signs release artifacts.

0

Pinned-Dependencies

Determines if the project has declared and pinned the dependencies of its build process.

Reason

dependency not pinned by hash detected -- score normalized to 0

Details

Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:124: update your workflow using https://app.stepsecurity.io/secureworkflow/lovell/sharp/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:129: update your workflow using https://app.stepsecurity.io/secureworkflow/lovell/sharp/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:134: update your workflow using https://app.stepsecurity.io/secureworkflow/lovell/sharp/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:185: update your workflow using https://app.stepsecurity.io/secureworkflow/lovell/sharp/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:186: update your workflow using https://app.stepsecurity.io/secureworkflow/lovell/sharp/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:214: update your workflow using https://app.stepsecurity.io/secureworkflow/lovell/sharp/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:218: update your workflow using https://app.stepsecurity.io/secureworkflow/lovell/sharp/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/npm.yml:99: update your workflow using https://app.stepsecurity.io/secureworkflow/lovell/sharp/npm.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/npm.yml:104: update your workflow using https://app.stepsecurity.io/secureworkflow/lovell/sharp/npm.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/npm.yml:109: update your workflow using https://app.stepsecurity.io/secureworkflow/lovell/sharp/npm.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/npm.yml:114: update your workflow using https://app.stepsecurity.io/secureworkflow/lovell/sharp/npm.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/npm.yml:120: update your workflow using https://app.stepsecurity.io/secureworkflow/lovell/sharp/npm.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/npm.yml:125: update your workflow using https://app.stepsecurity.io/secureworkflow/lovell/sharp/npm.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/npm.yml:136: update your workflow using https://app.stepsecurity.io/secureworkflow/lovell/sharp/npm.yml/main?enable=pin
Warn: containerImage not pinned by hash: test/bench/Dockerfile:1: pin your Docker image by updating ubuntu:24.10 to ubuntu:24.10@sha256:aadf9a3f5eda81295050d13dabe851b26a67597e424a908f25a63f589dfed48f
Warn: npmCommand not pinned by hash: test/bench/Dockerfile:18
Warn: npmCommand not pinned by hash: test/bench/Dockerfile:21
Warn: npmCommand not pinned by hash: .github/workflows/ci.yml:137
Warn: npmCommand not pinned by hash: .github/workflows/ci.yml:144
Warn: npmCommand not pinned by hash: .github/workflows/ci.yml:238
Warn: npmCommand not pinned by hash: .github/workflows/npm.yml:147
Info: 0 out of 8 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 6 third-party GitHubAction dependencies pinned
Info: 0 out of 1 containerImage dependencies pinned
Info: 0 out of 6 npmCommand dependencies pinned

0

SAST

Determines if the project uses static code analysis.

Score

6.7

/10

Last Scanned on 2025-05-05

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.

Learn More