{"id":13566881,"url":"https://github.com/editor-js/embed","last_synced_at":"2026-02-13T17:38:32.515Z","repository":{"id":40477246,"uuid":"147860880","full_name":"editor-js/embed","owner":"editor-js","description":"Embed Tool for Editor.js","archived":false,"fork":false,"pushed_at":"2026-01-22T16:25:51.000Z","size":488,"stargazers_count":157,"open_issues_count":51,"forks_count":106,"subscribers_count":4,"default_branch":"master","last_synced_at":"2026-01-23T09:32:14.895Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"","language":"TypeScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/editor-js.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE.md","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2018-09-07T18:31:27.000Z","updated_at":"2026-01-22T16:25:48.000Z","dependencies_parsed_at":"2023-11-07T19:48:07.091Z","dependency_job_id":"73f4930b-d382-490c-adef-b40847732298","html_url":"https://github.com/editor-js/embed","commit_stats":{"total_commits":128,"total_committers":21,"mean_commits":6.095238095238095,"dds":0.8046875,"last_synced_commit":"f2585abb9019abf93c18f1dcfa63b07a3dd08318"},"previous_names":["codex-editor/embed"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/editor-js/embed","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/editor-js%2Fembed","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/editor-js%2Fembed/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/editor-js%2Fembed/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/editor-js%2Fembed/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/editor-js","download_url":"https://codeload.github.com/editor-js/embed/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/editor-js%2Fembed/sbom","scorecard":{"id":298003,"data":{"date":"2025-08-11","repo":{"name":"github.com/editor-js/embed","commit":"801580fbdb7ab0ad1e975cfdaab38ada6625e301"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":3.8,"checks":[{"name":"Maintained","score":0,"reason":"0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Code-Review","score":10,"reason":"all changesets reviewed","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Warn: no topLevel permission defined: .github/workflows/npm-publish.yml:1","Warn: no topLevel permission defined: .github/workflows/test.yml:1","Info: no jobLevel write permissions found"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"Pinned-Dependencies","score":0,"reason":"dependency not pinned by hash detected -- score normalized to 0","details":["Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/npm-publish.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/editor-js/embed/npm-publish.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/npm-publish.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/editor-js/embed/npm-publish.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/npm-publish.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/editor-js/embed/npm-publish.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/npm-publish.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/editor-js/embed/npm-publish.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/npm-publish.yml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/editor-js/embed/npm-publish.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:10: update your workflow using https://app.stepsecurity.io/secureworkflow/editor-js/embed/test.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:11: update your workflow using https://app.stepsecurity.io/secureworkflow/editor-js/embed/test.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/editor-js/embed/test.yml/master?enable=pin","Info:   0 out of   6 GitHub-owned GitHubAction dependencies pinned","Info:   0 out of   2 third-party GitHubAction dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE.md:0","Info: FSF or OSI recognized license: MIT License: LICENSE.md:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"Signed-Releases","score":-1,"reason":"no releases found","details":null,"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Branch-Protection","score":-1,"reason":"internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration","details":null,"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"Security-Policy","score":0,"reason":"security policy file not detected","details":["Warn: no security policy file detected","Warn: no security file to analyze","Warn: no security file to analyze","Warn: no security file to analyze"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"SAST","score":0,"reason":"SAST tool is not run on all commits -- score normalized to 0","details":["Warn: 0 commits out of 30 are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"Vulnerabilities","score":0,"reason":"34 existing vulnerabilities detected","details":["Warn: Project is vulnerable to: GHSA-968p-4wvh-cqc8","Warn: Project is vulnerable to: GHSA-93q8-gq69-wqmw","Warn: Project is vulnerable to: GHSA-v6h2-p8h4-qcjw","Warn: Project is vulnerable to: GHSA-grv7-fg5c-xmjg","Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275","Warn: Project is vulnerable to: GHSA-gxpj-cx7g-858c","Warn: Project is vulnerable to: GHSA-67mh-4wv8-2f99","Warn: Project is vulnerable to: GHSA-2j2x-2gpw-g8fm","Warn: Project is vulnerable to: GHSA-4q6p-r6v2-jvc5","Warn: Project is vulnerable to: GHSA-ww39-953v-wcq6","Warn: Project is vulnerable to: GHSA-9c47-m6qq-7p4h","Warn: Project is vulnerable to: GHSA-952p-6rrq-rcjv","Warn: Project is vulnerable to: GHSA-f8q6-p94x-37v3","Warn: Project is vulnerable to: GHSA-xvch-5gv4-984h","Warn: Project is vulnerable to: GHSA-mwcw-c2x4-8c55","Warn: Project is vulnerable to: GHSA-g6ww-v8xp-vmwg","Warn: Project is vulnerable to: GHSA-566m-qj78-rww5","Warn: Project is vulnerable to: GHSA-7fh5-64p2-3v2j","Warn: Project is vulnerable to: GHSA-hwj9-h5mp-3pm3","Warn: Project is vulnerable to: GHSA-gcx4-mw62-g8wm","Warn: Project is vulnerable to: GHSA-c2qf-rxjj-qqgw","Warn: Project is vulnerable to: GHSA-92r3-m2mg-pj97","Warn: Project is vulnerable to: GHSA-c24v-8rfc-w8vw","Warn: Project is vulnerable to: GHSA-8jhw-289h-jh2g","Warn: Project is vulnerable to: GHSA-64vr-g452-qvp3","Warn: Project is vulnerable to: GHSA-9cwx-2883-4wfx","Warn: Project is vulnerable to: GHSA-vg6x-rcgg-rjx6","Warn: Project is vulnerable to: GHSA-x574-m823-4x7w","Warn: Project is vulnerable to: GHSA-4r4m-qw57-chr8","Warn: Project is vulnerable to: GHSA-xcj6-pq6g-qj4x","Warn: Project is vulnerable to: GHSA-356w-63v5-8wf4","Warn: Project is vulnerable to: GHSA-859w-5945-r5v3","Warn: Project is vulnerable to: GHSA-g3ch-rx76-35fx","Warn: Project is vulnerable to: GHSA-j8xg-fqg3-53r7"],"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-17T19:59:57.864Z","repository_id":40477246,"created_at":"2025-08-17T19:59:57.864Z","updated_at":"2025-08-17T19:59:57.864Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":29413515,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-02-13T06:24:03.484Z","status":"ssl_error","status_checked_at":"2026-02-13T06:23:12.830Z","response_time":78,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.5:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-08-01T13:02:18.770Z","updated_at":"2026-02-13T17:38:32.485Z","avatar_url":"https://github.com/editor-js.png","language":"TypeScript","funding_links":[],"categories":["Tools","TypeScript"],"sub_categories":["Block Tools"],"readme":"![](https://badgen.net/badge/Editor.js/v2.0/blue)\n\n# Embed Tool\n\nProvides Block tool for embedded content for the [Editor.js](https://editorjs.io).\nTool uses Editor.js pasted patterns handling and inserts iframe with embedded content.\n\n## List of services supported\n\n\u003e `service` — is a service name that will be saved to Tool's [output JSON](#output-data)\n\n- [Facebook](https://www.facebook.com) - `facebook` service\n- [Instagram](https://www.instagram.com/codex_team/) - `instagram` service\n- [YouTube](https://youtube.com) - `youtube` service\n- [X](https://twitter.com) - `twitter` service. (official twitter api is used for render, no need to use twitframe)\n- [Twitch](https://twitch.tv) - `twitch-video` service for videos and `twitch-channel` for channels\n- [Miro](https://miro.com) - `miro` service\n- [Vimeo](https://vimeo.com) — `vimeo` service\n- [Gfycat](https://gfycat.com) — `gfycat` service\n- [Imgur](https://imgur.com) — `imgur` service\n- [Vine](https://vine.co) - `vine` service. The project is in archive state now\n- [Aparat](https://www.aparat.com) - `aparat` service\n- [Yandex.Music](https://music.yandex.ru) - `yandex-music-track` service for tracks, `yandex-music-album` for albums and `yandex-music-playlist` for playlists\n- [Coub](https://coub.com) — `coub` service\n- [CodePen](https://codepen.io) — `codepen` service\n- [Pinterest](https://www.pinterest.com) - `pinterest` service\n- [GitHub Gist](https://gist.github.com) - `github` service\n- [Reddit](https://www.reddit.com/) - `reddit` service\n- [Figma](https://www.figma.com/) - `figma` service\n- [Whimsical](https://whimsical.com/) - whimsical service\n- 👇 Any other [customized service](#add-more-services)\n\n## Installation\n\nGet the package\n\n```shell\nyarn add @editorjs/embed\n```\n\nInclude module at your application\n\n```javascript\nimport Embed from '@editorjs/embed';\n```\n\nOptionally, you can load this tool from CDN [JsDelivr CDN](https://cdn.jsdelivr.net/npm/@editorjs/embed@latest)\n\n## Usage\n\nAdd a new Tool to the `tools` property of the Editor.js initial config.\n\n```javascript\nvar editor = EditorJS({\n  ...\n\n  tools: {\n    ...\n    embed: Embed,\n  },\n\n  ...\n});\n```\n\n## Available configuration\n\n### Enabling / disabling services\n\nEmbed Tool supports some services by default (see above). You can specify services you would like to use:\n\n```javascript\nvar editor = EditorJS({\n  ...\n\n  tools: {\n    ...\n    embed: {\n      class: Embed,\n      config: {\n        services: {\n          youtube: true,\n          coub: true\n        }\n      }\n    },\n  },\n\n  ...\n});\n```\n\n\u003e Note that if you pass services you want to use like in the example above, others will not be enabled.\n\n### Add more services\n\nYou can provide your own services using simple configuration.\n\nFirst, you should create a Service configuration object. It contains following fields:\n\n| Field      | Type       | Description |\n| ---------- | ---------- | ----------- |\n| `regex`    | `RegExp`   | Pattern of pasted URLs. You should use regexp groups to extract resource id\n| `embedUrl` | `string`   | Url of resource\\`s embed page. Use `\u003c%= remote_id %\u003e` to substitute resource identifier\n| `html`     | `string`   | HTML code of iframe with embedded content. `embedUrl` will be set as iframe `src`\n| `height`   | `number`   | _Optional_. Height of inserted iframe\n| `width`    | `number`   | _Optional_. Width of inserted iframe\n| `id`       | `Function` | _Optional_. If your id is complex you can provide function to make the id from extraced regexp groups\n\nExample:\n\n```javascript\n{\n  regex: /https?:\\/\\/codepen.io\\/([^\\/\\?\\\u0026]*)\\/pen\\/([^\\/\\?\\\u0026]*)/,\n  embedUrl: 'https://codepen.io/\u003c%= remote_id %\u003e?height=300\u0026theme-id=0\u0026default-tab=css,result\u0026embed-version=2',\n  html: \"\u003ciframe height='300' scrolling='no' frameborder='no' allowtransparency='true' allowfullscreen='true' style='width: 100%;'\u003e\u003c/iframe\u003e\",\n  height: 300,\n  width: 600,\n  id: (groups) =\u003e groups.join('/embed/')\n}\n```\n\nWhen you create a Service configuration object, you can provide it with Tool\\`s configuration:\n\n```javascript\nvar editor = EditorJS({\n  ...\n\n  tools: {\n    ...\n    embed: {\n      class: Embed,\n      config: {\n        services: {\n          youtube: true,\n          coub: true,\n          codepen: {\n            regex: /https?:\\/\\/codepen.io\\/([^\\/\\?\\\u0026]*)\\/pen\\/([^\\/\\?\\\u0026]*)/,\n            embedUrl: 'https://codepen.io/\u003c%= remote_id %\u003e?height=300\u0026theme-id=0\u0026default-tab=css,result\u0026embed-version=2',\n            html: \"\u003ciframe height='300' scrolling='no' frameborder='no' allowtransparency='true' allowfullscreen='true' style='width: 100%;'\u003e\u003c/iframe\u003e\",\n            height: 300,\n            width: 600,\n            id: (groups) =\u003e groups.join('/embed/')\n          }\n        }\n      }\n    },\n  },\n\n  ...\n});\n```\n\n#### Inline Toolbar\n\nEditor.js provides useful inline toolbar. You can allow it\\`s usage in the Embed Tool caption by providing `inlineToolbar: true`.\n\n```javascript\nvar editor = EditorJS({\n  ...\n\n  tools: {\n    ...\n    embed: {\n      class: Embed,\n      inlineToolbar: true\n    },\n  },\n\n  ...\n});\n```\n\n## Output data\n\n| Field   | Type     | Description\n| ------- | -------- | -----------\n| service | `string` | service unique name\n| source  | `string` | source URL\n| embed   | `string` | URL for source embed page\n| width   | `number` | embedded content width\n| height  | `number` | embedded content height\n| caption | `string` | content caption\n\n```json\n{\n  \"type\" : \"embed\",\n  \"data\" : {\n    \"service\" : \"coub\",\n    \"source\" : \"https://coub.com/view/1czcdf\",\n    \"embed\" : \"https://coub.com/embed/1czcdf\",\n    \"width\" : 580,\n    \"height\" : 320,\n    \"caption\" : \"My Life\"\n  }\n}\n```\n\n# About CodeX\n\n\u003cimg align=\"right\" width=\"120\" height=\"120\" src=\"https://codex.so/public/app/img/codex-logo.svg\" hspace=\"50\"\u003e\n\nCodeX is a team of digital specialists around the world interested in building high-quality open source products on a global market. We are [open](https://codex.so/join) for young people who want to constantly improve their skills and grow professionally with experiments in cutting-edge technologies.\n\n| 🌐 | Join  👋  | Twitter | Instagram |\n| -- | -- | -- | -- |\n| [codex.so](https://codex.so) | [codex.so/join](https://codex.so/join) |[@codex_team](http://twitter.com/codex_team) | [@codex_team](http://instagram.com/codex_team) |\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Feditor-js%2Fembed","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Feditor-js%2Fembed","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Feditor-js%2Fembed/lists"}