{"id":13453260,"url":"https://github.com/davidjbradshaw/iframe-resizer","last_synced_at":"2025-09-09T21:19:53.559Z","repository":{"id":8957519,"uuid":"10696042","full_name":"davidjbradshaw/iframe-resizer","owner":"davidjbradshaw","description":"Keep iframes sized to their content","archived":false,"fork":false,"pushed_at":"2025-09-01T11:51:18.000Z","size":11523,"stargazers_count":6839,"open_issues_count":7,"forks_count":979,"subscribers_count":139,"default_branch":"master","last_synced_at":"2025-09-04T05:27:05.710Z","etag":null,"topics":["cross-domain","cross-origin","iframe","iframed-page","resize"],"latest_commit_sha":null,"homepage":"https://iframe-resizer.com","language":"JavaScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"other","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/davidjbradshaw.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":".github/FUNDING.yml","license":"LICENSE","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":"SECURITY.md","support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null},"funding":{"github":"davidjbradshaw","custom":["https://www.buymeacoffee.com/davidjbradshaw"],"tidelift":"npm/iframe-resizer"}},"created_at":"2013-06-14T19:18:32.000Z","updated_at":"2025-09-02T08:50:16.000Z","dependencies_parsed_at":"2022-07-11T03:18:31.275Z","dependency_job_id":"1e864c52-18ba-4235-8960-32a5cc3286d7","html_url":"https://github.com/davidjbradshaw/iframe-resizer","commit_stats":{"total_commits":1982,"total_committers":119,"mean_commits":16.65546218487395,"dds":0.1700302724520686,"last_synced_commit":"05ce0008c1c2eaf5ef600b5427fa5d757cde1c91"},"previous_names":[],"tags_count":172,"template":false,"template_full_name":null,"purl":"pkg:github/davidjbradshaw/iframe-resizer","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/davidjbradshaw%2Fiframe-resizer","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/davidjbradshaw%2Fiframe-resizer/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/davidjbradshaw%2Fiframe-resizer/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/davidjbradshaw%2Fiframe-resizer/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/davidjbradshaw","download_url":"https://codeload.github.com/davidjbradshaw/iframe-resizer/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/davidjbradshaw%2Fiframe-resizer/sbom","scorecard":{"id":326892,"data":{"date":"2025-08-11","repo":{"name":"github.com/davidjbradshaw/iframe-resizer","commit":"33c32afa2773677ded29db3e9475c171beba4bfd"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":4.6,"checks":[{"name":"Code-Review","score":0,"reason":"Found 0/17 approved changesets -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"Maintained","score":10,"reason":"30 commit(s) and 12 issue activity found in the last 90 days -- score normalized to 10","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Info: jobLevel 'contents' permission set to 'read': .github/workflows/eslint.yml:26","Warn: no topLevel permission defined: .github/workflows/eslint.yml:1","Warn: no topLevel permission defined: .github/workflows/node.js.yml:1","Info: no jobLevel write permissions found"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"Security-Policy","score":10,"reason":"security policy file detected","details":["Info: security policy file detected: SECURITY.md:1","Info: Found linked content: SECURITY.md:1","Info: Found disclosure, vulnerability, and/or timelines in security policy: SECURITY.md:1","Info: Found text in security policy: SECURITY.md:1"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"Pinned-Dependencies","score":1,"reason":"dependency not pinned by hash detected -- score normalized to 1","details":["Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/eslint.yml:30: update your workflow using https://app.stepsecurity.io/secureworkflow/davidjbradshaw/iframe-resizer/eslint.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/eslint.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/davidjbradshaw/iframe-resizer/eslint.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/node.js.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/davidjbradshaw/iframe-resizer/node.js.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/node.js.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/davidjbradshaw/iframe-resizer/node.js.yml/master?enable=pin","Warn: npmCommand not pinned by hash: .github/workflows/eslint.yml:34","Info:   0 out of   4 GitHub-owned GitHubAction dependencies pinned","Info:   1 out of   2 npmCommand dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"License","score":9,"reason":"license file detected","details":["Info: project has a license file: LICENSE:0","Warn: project license file does not contain an FSF or OSI license."],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Branch-Protection","score":0,"reason":"branch protection not enabled on development/release branches","details":["Warn: branch protection not enabled for branch 'master'"],"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"Signed-Releases","score":-1,"reason":"no releases found","details":null,"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"SAST","score":8,"reason":"SAST tool is not run on all commits -- score normalized to 8","details":["Warn: 17 commits out of 21 are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"Vulnerabilities","score":0,"reason":"52 existing vulnerabilities detected","details":["Warn: Project is vulnerable to: GHSA-v6h2-p8h4-qcjw","Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275","Warn: Project is vulnerable to: GHSA-pp7h-53gx-mx7r","Warn: Project is vulnerable to: GHSA-p6mr-pxg4-68hx","Warn: Project is vulnerable to: GHSA-73v8-v6g4-vrpm","Warn: Project is vulnerable to: GHSA-hr2v-3952-633q","Warn: Project is vulnerable to: GHSA-fjxv-7rqg-78g4","Warn: Project is vulnerable to: GHSA-pfrx-2q88-qq97","Warn: Project is vulnerable to: GHSA-q42p-pg8m-cqh6","Warn: Project is vulnerable to: GHSA-2cf5-4w76-r9qv","Warn: Project is vulnerable to: GHSA-3cqr-58rm-57f8","Warn: Project is vulnerable to: GHSA-g9r4-xpmj-mj65","Warn: Project is vulnerable to: GHSA-q2c6-c6pm-g3gh","Warn: Project is vulnerable to: GHSA-w457-6q6x-cgp9","Warn: Project is vulnerable to: GHSA-9prh-257w-9277","Warn: Project is vulnerable to: GHSA-765h-qjxv-5f44","Warn: Project is vulnerable to: GHSA-f2jv-r9rf-7988","Warn: Project is vulnerable to: GHSA-jcpv-g9rr-qxrc","Warn: Project is vulnerable to: GHSA-44pw-h2cw-w3vq","Warn: Project is vulnerable to: GHSA-jp4x-w63m-7wgm","Warn: Project is vulnerable to: GHSA-c429-5p7v-vgjp","Warn: Project is vulnerable to: GHSA-jf85-cpcp-j695","Warn: Project is vulnerable to: GHSA-fvqr-27wr-82fm","Warn: Project is vulnerable to: GHSA-4xc9-xhrj-v574","Warn: Project is vulnerable to: GHSA-x5rq-j2xg-h7qm","Warn: Project is vulnerable to: GHSA-29mw-wpgm-hmr9","Warn: Project is vulnerable to: GHSA-35jh-r3h4-6jhm","Warn: Project is vulnerable to: GHSA-wrvr-8mpx-r7pp","Warn: Project is vulnerable to: GHSA-hxm2-r34f-qmc5","Warn: Project is vulnerable to: GHSA-f8q6-p94x-37v3","Warn: Project is vulnerable to: GHSA-vh95-rmgr-6w4m","Warn: Project is vulnerable to: GHSA-xvch-5gv4-984h","Warn: Project is vulnerable to: GHSA-pc58-wgmc-hfjr","Warn: Project is vulnerable to: GHSA-vvv8-xw5f-3f88","Warn: Project is vulnerable to: GHSA-gqgv-6jq5-jjj9","Warn: Project is vulnerable to: GHSA-hrpp-h998-j3pp","Warn: Project is vulnerable to: GHSA-7xfp-9c55-5vqj","Warn: Project is vulnerable to: GHSA-p8p7-x288-28g6","Warn: Project is vulnerable to: GHSA-x6fg-f45m-jf5q","Warn: Project is vulnerable to: GHSA-c2qf-rxjj-qqgw","Warn: Project is vulnerable to: GHSA-qg8p-v9q4-gh34","Warn: Project is vulnerable to: GHSA-g4rg-993r-mgx7","Warn: Project is vulnerable to: GHSA-x2mc-8fgj-3wmr","Warn: Project is vulnerable to: GHSA-pq67-2wwv-3xjx","Warn: Project is vulnerable to: GHSA-8cj5-5rvv-wf4v","Warn: Project is vulnerable to: GHSA-52f5-9888-hmc6","Warn: Project is vulnerable to: GHSA-qhv9-728r-6jqg","Warn: Project is vulnerable to: GHSA-g7q5-pjjr-gqvp","Warn: Project is vulnerable to: GHSA-72xf-g2v4-qvf3","Warn: Project is vulnerable to: GHSA-xc7v-wxcw-j472","Warn: Project is vulnerable to: GHSA-34r7-q49f-h37c","Warn: Project is vulnerable to: GHSA-c9f4-xj24-8jqx"],"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-18T02:40:31.191Z","repository_id":8957519,"created_at":"2025-08-18T02:40:31.191Z","updated_at":"2025-08-18T02:40:31.191Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":274094936,"owners_count":25221430,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-09-07T02:00:09.463Z","response_time":67,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["cross-domain","cross-origin","iframe","iframed-page","resize"],"created_at":"2024-07-31T08:00:36.824Z","updated_at":"2025-09-09T21:19:53.550Z","avatar_url":"https://github.com/davidjbradshaw.png","language":"JavaScript","readme":"\u003cbr\u003e\u003cp align=\"center\"\u003e\n[\u003cimg src=\"https://iframe-resizer.com/logo-full.svg\" alt=\"iframe-reizer\" title=\"\" width=\"90%\" style=\"max-width:90%;margin-bottom: -20px\"\u003e](https://iframe-resizer.com)\n\u003c/p\u003e\u003cbr\u003e\n \u003c!--\n[![npm version](https://badge.fury.io/js/@iframe-resizer%2Fcore.svg)](https://badge.fury.io/js/@iframe-resizer%2Fparent)\n[![NPM Downloads](https://img.shields.io/npm/dm/iframe-resizer.svg)](https://npm-stat.com/charts.html?package=iframe-resizer\u0026from=2014-12-31)\n[![](https://data.jsdelivr.com/v1/package/npm/iframe-resizer/badge?style=rounded)](https://www.jsdelivr.com/package/npm/iframe-resizer) \n--\u003e\n\n## Introduction\n\nThe _[iframe-resizer](https://iframe-resizer.com)_ library aims to take away the pain\npoints with using iframes. It will resize your iframe to match the size of your content\nand then monitors the iframe to ensure that it is remains the perfect size.\n\n### Reliable Resizing\n\nModern browsers are still unable to provide a single consistently reliable method to calculate\npage content size. Therefore _iframe-resizer_ automatically inspects your page and selects the\nbest value for your page size from a range DOM values and _iframe-resizer's_ own custom content\nsize calculation algorithm.\n\n### Cross Domain\n\nSupports both internal (same-domain) and external (cross-domain) iframes via a simple\nJS file that is designed to be a zero impact guest on the sites hosting it.\n\n### Lightening Performance\n\nTo ensure minimal impact on your site, _iframe-resizer_ is highly optimised and\nutilizes _[Set Theory](https://en.wikipedia.org/wiki/Set_theory)_ to ensure it only\nchecks the page elements that effect the sizing of your iframes.\n\nEven on the most complex pages, _iframe-resizer_ can detect changes to both HTML\nand CSS, calculate the revised content dimensions and update the iframe in sub\nmillisecond time.\n\n### Setup\n\nPlease see the **_[iframe-resizer](https://iframe-resizer.com)_** website for setup guides\nand API documentation. This includes versions for:\n\n* **[Vanilla JS](https://iframe-resizer.com/setup)**\n* **[React](https://iframe-resizer.com/frameworks/react)**\n* **[Vue](https://iframe-resizer.com/frameworks/vue3)**\n* **[Angular](https://iframe-resizer.com/frameworks/angular)**\n* **[jQuery](https://iframe-resizer.com/frameworks/jquery)**\n\nAlong with setup guides for:\n  \n* **[Wordpress](https://iframe-resizer.com/guides/wordpress/)**\n* **[Google Apps Script](https://iframe-resizer.com/guides/google_apps_script)**\n\nTheir is also an [API](https://iframe-resizer.com/frameworks/api/) to support the creation\nof additional custom components.\n\n### Extended API\n\nAdditionally _iframe-resizer_ provides a range of missing browser API features, that allows you to securely integrate your iframe content with the parent page.\n\n- Scroll the parent page, [relative to the iframe](https://iframe-resizer.com/api/child#scrolltooffsetx-y) or [parent page's position](https://iframe-resizer.com/api/child#scrollbyx-y)\n- Provides details of the [position of the iframe](https://iframe-resizer.com/api/child#getparentpropscallback), the [scroll position](https://iframe-resizer.com/api/child#getparentpropscallback) and [viewport](https://iframe-resizer.com/api/child#getparentpropscallback) of the parent page\n- Fixes [in page linking](https://iframe-resizer.com/api/parent#inpagelinks) in the iframe and allows links to propagate to the parent page\n- Adds [`onMouseEnter`](https://iframe-resizer.com/api/parent#onmouseenter) and [`onMouseLeave`](https://iframe-resizer.com/api/parent#onmouseleave) events to the iframe element\n- Simplified message passing between the [iframe](https://iframe-resizer.com/api/child#onmessage) and the [parent](https://iframe-resizer.com/api/parent#onmessage) page\n- Automatic domain authentication\n- Enhanced [Accessibility](https://iframe-resizer.com/accessibility)\n\nWhen combined with [viewer.js](https://viewerjs.org/) it can even resize iframes containing PDF and ODF documents.\n\n## Version 5\n\nThis version of iframe-resizer has been extensively rewritten to use modern browser APIs, this has enabled significantly better performance and greater accuracy in the detection of content resizing events.\n\nWith this release, the opportunity has been taken to refresh and simplify the API, if you are coming from a previous version then their is an [Upgrade Guide](https://iframe-resizer.com/upgrade) to explain the changes.\n\n---\n[\u003cimg align=\"right\" src=\"https://badge.fury.io/js/@iframe-resizer%2Fcore.svg\" alt=\"NPM\" /\u003e](https://badge.fury.io/js/@iframe-resizer%2Fparent)\nCopyright \u0026copy; 2013-25 [David J. Bradshaw](https://github.com/davidjbradshaw)\n","funding_links":["https://github.com/sponsors/davidjbradshaw","https://www.buymeacoffee.com/davidjbradshaw","https://tidelift.com/funding/github/npm/iframe-resizer"],"categories":["JavaScript","Utilities"],"sub_categories":["React Components"],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdavidjbradshaw%2Fiframe-resizer","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fdavidjbradshaw%2Fiframe-resizer","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdavidjbradshaw%2Fiframe-resizer/lists"}