Gathering detailed insights and metrics for jpeg-exif
Gathering detailed insights and metrics for jpeg-exif
Installations
npm install jpeg-exifDeveloper Guide
BETA
Typescript
No
Module System
CommonJS
Node Version
10.16.2
NPM Version
6.10.3
Releases
Unable to fetch releases
Languages
1
JavaScript
JavaScript (100%)
Developer
zhso
Download Statistics
Total Downloads
0
Last Day
0
Last Week
0
Last Month
0
Last Year
0
GitHub Statistics
MIT License
17 Stars
144 Commits
10 Forks
5 Watchers
8 Branches
4 Contributors
Updated on May 09, 2024
Maintainers
1
Package Meta Information
Latest Version
1.1.4
Package Id
jpeg-exif@1.1.4
Unpacked Size
898.68 kB
Size
834.89 kB
File Count
17
NPM Version
6.10.3
Node Version
10.16.2
Total Downloads
Cumulative downloads
Total Downloads
NaN
Last Day
0%
NaN
Compared to previous day
Last Week
0%
NaN
Compared to previous week
Last Month
0%
NaN
Compared to previous month
Last Year
0%
NaN
Compared to previous year
Weekly Downloads
Monthly Downloads
Yearly Downloads
jpeg-exif
Get exif information from jpeg format file. Works with TIFF too!
Async
1import exif from "jpeg-exif"; 2 3const filePath = "~/Photo/IMG_0001.JPG"; 4 5exif.parse(filePath, (err, data) => { 6 if (err) { 7 console.log(err); 8 } else { 9 console.log(data); 10 } 11});
Sync
1import exif from "jpeg-exif"; 2 3const filePath = "~/Photo/IMG_0001.JPG"; 4const data = exif.parseSync(filePath); 5 6console.log(data);
From Buffer
1import fs from "fs"; 2import exif from "jpeg-exif"; 3 4const filePath = "~/Documents/DOC_0001.TIFF"; 5const buffer = fs.readFileSync(filePath); 6const data = exif.fromBuffer(buffer); 7 8console.log(data);
Features
- Support All CP3451 Standard Tags (Include GPS & SubExif Tags)
- Support Sync, Async
- Support pass Buffer Type
Installation
1$ npm i jpeg-exif
Callback Data Format
1{ 2 "Make": "Apple", 3 "Model": "Apple", 4 //... 5 "SubExif": [ 6 "DateTimeOriginal": "2015:10:06 17:19:36", 7 "CreateDate": "2015:10:06 17:19:36", 8 //... 9 ], 10 "GPSInfo":[ 11 "GPSLatitudeRef": "N", 12 "GPSLatitude": [ 35, 39, 40.08 ], 13 //... 14 ] 15}
No vulnerabilities found.
Reason
no dangerous workflow patterns detected
Reason
no binaries found in the repo
Reason
license file detected
Details
- Info: project has a license file: LICENSE.txt:0
- Info: FSF or OSI recognized license: MIT License: LICENSE.txt:0
Reason
SAST tool detected but not run on all commits
Details
- Info: SAST configuration detected: CodeQL
- Warn: 0 commits out of 27 are checked with a SAST tool
Reason
0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0
Reason
Found 0/8 approved changesets -- score normalized to 0
Reason
dependency not pinned by hash detected -- score normalized to 0
Details
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/zhso/jpeg-exif/codeql-analysis.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:45: update your workflow using https://app.stepsecurity.io/secureworkflow/zhso/jpeg-exif/codeql-analysis.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:56: update your workflow using https://app.stepsecurity.io/secureworkflow/zhso/jpeg-exif/codeql-analysis.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:70: update your workflow using https://app.stepsecurity.io/secureworkflow/zhso/jpeg-exif/codeql-analysis.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/node.js.yml:11: update your workflow using https://app.stepsecurity.io/secureworkflow/zhso/jpeg-exif/node.js.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/node.js.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/zhso/jpeg-exif/node.js.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/node.js.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/zhso/jpeg-exif/node.js.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/node.js.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/zhso/jpeg-exif/node.js.yml/master?enable=pin
- Warn: downloadThenRun not pinned by hash: .github/workflows/node.js.yml:20
- Info: 0 out of 7 GitHub-owned GitHubAction dependencies pinned
- Info: 0 out of 1 third-party GitHubAction dependencies pinned
- Info: 0 out of 1 downloadThenRun dependencies pinned
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Info: jobLevel 'contents' permission set to 'read': .github/workflows/codeql-analysis.yml:29
- Info: jobLevel 'actions' permission set to 'read': .github/workflows/codeql-analysis.yml:28
- Warn: no topLevel permission defined: .github/workflows/codeql-analysis.yml:1
- Warn: no topLevel permission defined: .github/workflows/node.js.yml:1
- Info: no jobLevel write permissions found
Reason
security policy file not detected
Details
- Warn: no security policy file detected
- Warn: no security file to analyze
- Warn: no security file to analyze
- Warn: no security file to analyze
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
branch protection not enabled on development/release branches
Details
- Warn: branch protection not enabled for branch 'master'
Reason
22 existing vulnerabilities detected
Details
- Warn: Project is vulnerable to: GHSA-968p-4wvh-cqc8
- Warn: Project is vulnerable to: GHSA-67hx-6x53-jw92
- Warn: Project is vulnerable to: GHSA-v6h2-p8h4-qcjw
- Warn: Project is vulnerable to: GHSA-cwfw-4gq5-mrqx
- Warn: Project is vulnerable to: GHSA-g95f-p29q-9xw4
- Warn: Project is vulnerable to: GHSA-grv7-fg5c-xmjg
- Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275
- Warn: Project is vulnerable to: GHSA-w573-4hg7-7wgq
- Warn: Project is vulnerable to: GHSA-4q6p-r6v2-jvc5
- Warn: Project is vulnerable to: GHSA-9c47-m6qq-7p4h
- Warn: Project is vulnerable to: GHSA-952p-6rrq-rcjv
- Warn: Project is vulnerable to: GHSA-f8q6-p94x-37v3
- Warn: Project is vulnerable to: GHSA-xvch-5gv4-984h
- Warn: Project is vulnerable to: GHSA-mwcw-c2x4-8c55
- Warn: Project is vulnerable to: GHSA-5r98-f33j-g8h7
- Warn: Project is vulnerable to: GHSA-vm32-9rqf-rh3r
- Warn: Project is vulnerable to: GHSA-8cc4-rfj6-fhg4
- Warn: Project is vulnerable to: GHSA-p8p7-x288-28g6
- Warn: Project is vulnerable to: GHSA-c2qf-rxjj-qqgw
- Warn: Project is vulnerable to: GHSA-76p7-773f-r4q5
- Warn: Project is vulnerable to: GHSA-72xf-g2v4-qvf3
- Warn: Project is vulnerable to: GHSA-j8xg-fqg3-53r7
Score
2.9
/10
Last Scanned on 2025-06-30
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More