@cspell/dict-npm
Advanced tools
This dictionary contains a list of popular JavaScript packages found on npmjs.com.
This is a pre-built dictionary for use with CSpell.
| Tool | Version |
|---|---|
| cspell | >= 6 |
| Code Spell Checker - Visual Studio Code | >= 2 |
Global Install and add to CSpell global settings.
npm install -g @cspell/dict-npm
cspell link add @cspell/dict-npm
cspell link remove @cspell/dict-npm
The cspell-ext.json file in this package should be added to the import section in your cspell.json file.
{
// …
"import": ["@cspell/dict-npm/cspell-ext.json"],
// …
}
See: How to Create a New Dictionary
MIT
Some packages may have other licenses included.
@cspell/dict-python provides a dictionary for Python-related terms for the CSpell spell checker. It is similar to @cspell/dict-npm but focuses on Python terminology.
@cspell/dict-html offers a dictionary for HTML-related terms for the CSpell spell checker. It is comparable to @cspell/dict-npm but is tailored for HTML vocabulary.
@cspell/dict-typescript supplies a dictionary for TypeScript-related terms for the CSpell spell checker. It is akin to @cspell/dict-npm but is designed for TypeScript-specific terms.
FAQs
Dictionary of common NPM packages for cspell.
The npm package @cspell/dict-npm receives a total of 1,071,692 weekly downloads. As such, @cspell/dict-npm popularity was classified as popular.
We found that @cspell/dict-npm demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
OWASP’s 2025 Top 10 introduces Software Supply Chain Failures as a new category, reflecting rising concern over dependency and build system risks.
Research
/Security News
Socket researchers discovered nine malicious NuGet packages that use time-delayed payloads to crash applications and corrupt industrial control systems.
Security News
Socket CTO Ahmad Nassri discusses why supply chain attacks now target developer machines and what AI means for the future of enterprise security.