Gathering detailed insights and metrics for imagekit-media-library-widget
Gathering detailed insights and metrics for imagekit-media-library-widget
Installations
npm install imagekit-media-library-widgetDeveloper Guide
BETA
Typescript
Yes
Module System
CommonJS, UMD
Node Version
18.20.8
NPM Version
10.8.2
Releases
10
Languages
2
TypeScript
JavaScript
TypeScript (87.87%)
JavaScript (12.13%)
Developer
Download Statistics
Total Downloads
0
Last Day
0
Last Week
0
Last Month
0
Last Year
0
GitHub Statistics
4 Stars
72 Commits
10 Forks
5 Watchers
2 Branches
6 Contributors
Updated on Jul 10, 2025
Maintainers
1
Package Meta Information
Latest Version
2.1.2
Package Id
imagekit-media-library-widget@2.1.2
Unpacked Size
87.22 kB
Size
11.48 kB
File Count
14
NPM Version
10.8.2
Node Version
18.20.8
Published on
Jul 10, 2025
Total Downloads
Cumulative downloads
Total Downloads
NaN
Last Day
0%
NaN
Compared to previous day
Last Week
0%
NaN
Compared to previous week
Last Month
0%
NaN
Compared to previous month
Last Year
0%
NaN
Compared to previous year
Weekly Downloads
Monthly Downloads
Yearly Downloads
ImageKit Media Library Widget
This plugin provides access to ImageKit Media Library through an embeddable UI within your own CMS or website.
Table of Contents
Installation
Using CDN
1<script src="https://unpkg.com/imagekit-media-library-widget/dist/imagekit-media-library-widget.min.js"></script>
Using NPM
Install imagekit-media-library-widget:
1npm install --save imagekit-media-library-widget
Now include it in your JS code:
1// ES6 module 2import IKMediaLibraryWidgetCore from 'imagekit-media-library-widget'; 3 4// Common JS syntax 5const IKMediaLibraryWidgetCore = require("imagekit-media-library-widget");
Usage
Check out our detailed guide on ImageKit Docs: Media Library Widget
Quick start (HTML and JS)
Include the script in your HTML:
1<script src="https://unpkg.com/imagekit-media-library-widget/dist/imagekit-media-library-widget.min.js"></script>
Define a DOM container for the plugin. This accepts any CSS selector:
1<div id="container"></div>
or
1<div class="container"></div>
Configure and instantiate the plugin:
1// configuration options 2var config = { 3 container: '#container', // the element in which the Media Library Widget will be rendered 4 className: 'media-library-widget', 5 dimensions: { 6 height: '100%', 7 width: '100%', 8 }, 9 view: 'modal', // inline | modal (default) 10 renderOpenButton: true, // false | true (default) 11 /* 12 mlSettings: { // optional 13 initialView: { 14 15 // sets initial state of Media Library, refer to the ImageKit Docs for more information 16 // https://docs.imagekit.io/sample-projects/embeddable-media-library-widget 17 18 // only one of the following parameters can be passed at a time 19 20 folderPath: "<your-folder-path>", 21 fileId: "<file_id>", 22 searchQuery: "<search-query>", 23 collection: { 24 // pass empty object to open Media Collections page 25 id: "<collection-id>" // open specific Media Collection 26 }, 27 fileType: "images" | "videos" | "cssJs" | "others" 28 }, 29 multiple: true // false | true (default), 30 maxFiles: 20 // relevant when `multiple` is true 31 toolbar: { 32 // sets the visibility of the toolbar buttons 33 // defaults to true for all buttons 34 showCloseButton: false, 35 showInsertButton: false 36 } 37 } 38 */ 39}; 40 41// define callback handler 42function callback(payload) { 43 // this is the callback handler 44 // … consume json payload … 45} 46 47// instantiate the Media Library Widget plugin 48var mediaLibraryWidget = new IKMediaLibraryWidget(config, callback);
Note: Google Chrome (Incognito)
To use this plugin on Google Chrome in Incognito mode, you need to enable third-party cookies:
Demo
Run following commands:
1npm install 2npm run sample
It will install dependencies and serve the included demo: sample-app.
The sample app should be available on http://localhost:3000.
No vulnerabilities found.
Reason
no dangerous workflow patterns detected
Reason
no binaries found in the repo
Reason
8 commit(s) and 3 issue activity found in the last 90 days -- score normalized to 9
Reason
Found 6/8 approved changesets -- score normalized to 7
Reason
branch protection is not maximal on development and all release branches
Details
- Info: 'allow deletion' disabled on branch 'master'
- Info: 'force pushes' disabled on branch 'master'
- Info: 'branch protection settings apply to administrators' is required to merge on branch 'master'
- Warn: could not determine whether codeowners review is allowed
- Warn: no status checks found to merge onto branch 'master'
- Warn: PRs are not required to make changes on branch 'master'; or we don't have data to detect it.If you think it might be the latter, make sure to run Scorecard with a PAT or use Repo Rules (that are always public) instead of Branch Protection settings
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Warn: no topLevel permission defined: .github/workflows/npmpublish.yml:1
- Info: no jobLevel write permissions found
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
security policy file not detected
Details
- Warn: no security policy file detected
- Warn: no security file to analyze
- Warn: no security file to analyze
- Warn: no security file to analyze
Reason
dependency not pinned by hash detected -- score normalized to 0
Details
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/npmpublish.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/imagekit-developer/embeddable-media-library/npmpublish.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/npmpublish.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/imagekit-developer/embeddable-media-library/npmpublish.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/npmpublish.yml:32: update your workflow using https://app.stepsecurity.io/secureworkflow/imagekit-developer/embeddable-media-library/npmpublish.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/npmpublish.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/imagekit-developer/embeddable-media-library/npmpublish.yml/master?enable=pin
- Warn: npmCommand not pinned by hash: .github/workflows/npmpublish.yml:23
- Warn: npmCommand not pinned by hash: .github/workflows/npmpublish.yml:40
- Info: 0 out of 4 GitHub-owned GitHubAction dependencies pinned
- Info: 0 out of 2 npmCommand dependencies pinned
Reason
license file not detected
Details
- Warn: project does not have a license file
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
SAST tool is not run on all commits -- score normalized to 0
Details
- Warn: 0 commits out of 28 are checked with a SAST tool
Reason
19 existing vulnerabilities detected
Details
- Warn: Project is vulnerable to: GHSA-968p-4wvh-cqc8
- Warn: Project is vulnerable to: GHSA-v6h2-p8h4-qcjw
- Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275
- Warn: Project is vulnerable to: GHSA-9wv6-86v2-598j
- Warn: Project is vulnerable to: GHSA-gcx4-mw62-g8wm
- Warn: Project is vulnerable to: GHSA-76p7-773f-r4q5
- Warn: Project is vulnerable to: GHSA-qwcr-r2fm-qrc7
- Warn: Project is vulnerable to: GHSA-pxg6-pf52-xh8x
- Warn: Project is vulnerable to: GHSA-rv95-896h-c2vc
- Warn: Project is vulnerable to: GHSA-qw6h-vgh9-j6wx
- Warn: Project is vulnerable to: GHSA-896r-f27r-55mw
- Warn: Project is vulnerable to: GHSA-29mw-wpgm-hmr9
- Warn: Project is vulnerable to: GHSA-35jh-r3h4-6jhm
- Warn: Project is vulnerable to: GHSA-rhx6-c78j-4q9w
- Warn: Project is vulnerable to: GHSA-hrpp-h998-j3pp
- Warn: Project is vulnerable to: GHSA-p8p7-x288-28g6
- Warn: Project is vulnerable to: GHSA-m6fv-jmcg-4jfg
- Warn: Project is vulnerable to: GHSA-cm22-4g7w-348p
- Warn: Project is vulnerable to: GHSA-72xf-g2v4-qvf3
Score
4
/10
Last Scanned on 2025-07-07
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More