Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@dr.pogodin/postcss-modules-parser
Advanced tools
A CSS Modules parser to extract tokens from the css file
A fork of postcss-icss
Git repository, updated to use the latest dependency versions. The Git repo hosts codebases of both postcss-modules-parser (older), and postcss-icss (newer) NPM packages. The present fork updates and releases postcss-modules-parser only.
A CSS Modules parser to extract tokens from the css file. Provides opportunity to process multiple files. Supports both synchronous and asynchronous file loaders.
In order to use it you should provide a fetch
function which should load contents of files and process it with the PostCSS instance. fetch
function should return tokens or promise object which will resolve into tokens.
var Parser = require('@dr.pogodin/postcss-modules-parser');
/**
* @param {string} to Path to the new file. Could be any.
* @param {string} from Path to the source file. Should be absolute.
* @return {object} Tokens
*/
function fetch(to, from) {
// load content
return instance.process(css, {from: filename}).root.tokens;
}
new Parser({fetch: fetch});
See the examples:
FAQs
A CSS Modules parser to extract tokens from the css file
The npm package @dr.pogodin/postcss-modules-parser receives a total of 2,769 weekly downloads. As such, @dr.pogodin/postcss-modules-parser popularity was classified as popular.
We found that @dr.pogodin/postcss-modules-parser demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.