Security News
The Hidden Blast Radius of the Axios Compromise
The Axios compromise shows how time-dependent dependency resolution makes exposure harder to detect and contain.
By Ahmad Nassri - Apr 01, 2026
New Research: Supply Chain Attack on Axios Pulls Malicious Dependency from npm.Details → →
@calumk/editorjs-codeflask
Advanced tools
EditorJs - Codeflask
[!WARNING] This repo is depreciated / archived.
[!IMPORTANT] Due to changes in the core editor (Change from codeflask -> codecup) I have decided to fork this repo, and depreciate it.
The Plugin originally relied on CodeFlask, which i have also forked, and republished as CodeCup
As such, the plugin is now different enough, that i have decided to republish it under its new name, so I can accept issues/pull requests on the whole stack, and maintain it better going forwards
Please upgrade to @calumk/editorjs-codecup
NPM
npm i @calumk/editorjs-codeflask
JS
https://cdn.jsdelivr.net/npm/@calumk/editorjs-codeflask@latest
About
This is an EditorJs wrapper for CodeFlask - A lovely lightweight zero-dep code formatter
It was built to be an improvement on :
- https://github.com/editor-js/code - Too Basic
- https://github.com/dev-juju/codebox - Agressive styling, and exports more data than markdown can handle
Demo
Built with:
Installation / use
import EditorJS from '@editorjs/editorjs';
import editorjsCodeflask from '@calumk/editorjs-codeflask';
var editor = EditorJS({
// ...
tools: {
...
code : editorjsCodeflask
},
});
Data Format
The data imported/exported from the block is as follows:
| Name | Description |
|---|---|
| code | The code that is displayed in the editor, with line breaks |
| language (optional) | The programming language |
| showlinenumbers (optional) | Will show/hide the line numbers (Default true) (WIP - Codeflask #132) |
Since language and linenumbers are optional, existing code blocks can safley use this plugin
FAQs
Codeflask, for EditorJS
The npm package @calumk/editorjs-codeflask receives a total of 405 weekly downloads. As such, @calumk/editorjs-codeflask popularity was classified as not popular.
We found that @calumk/editorjs-codeflask demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 13 Jan 2024
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
Supply Chain Attack on Axios Pulls Malicious Dependency from npm
A supply chain attack on Axios introduced a malicious dependency, plain-crypto-js@4.2.1, published minutes earlier and absent from the project’s GitHub releases.
By Socket Research Team - Mar 31, 2026
Research
TeamPCP Compromises Telnyx Python SDK to Deliver Credential-Stealing Malware
Malicious versions of the Telnyx Python SDK on PyPI delivered credential-stealing malware via a multi-stage supply chain attack.
By Socket Research Team - Mar 27, 2026