🎩 You're Invited:Meet the Socket team at Black Hat in Las Vegas, August 3-6.RSVP
Sign In

@yummacss/canon

Package Overview
Dependencies
Maintainers
1
Versions
3
Alerts
File Explorer

Advanced tools

Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

@yummacss/canon

Class validator for Yumma CSS

latest
Source
npmnpm
Version
3.28.2
Version published
Weekly downloads
216
-33.33%
Maintainers
1
Weekly downloads
 
Created
Source

@yummacss/canon

Class validator for Yumma CSS. Scans your source files & reports every class that is not part of the Yumma CSS canon - Tailwind habits, typos, & AI hallucinations like gap-4 instead of g-4.

If it's not canon, it doesn't ship.

Validity is checked against the Yumma CSS generator itself, so a class is canon exactly when it produces CSS. Variants (@sm:, h:), opacity (/50), negative values (m--4), custom theme colors, prefixes, & safelist entries are all understood.

Installation

npm install -D @yummacss/canon

Usage

Run it in any project with a yumma.config.mjs:

npx @yummacss/canon
Scanned 42 files and found 128 unique classes.
Found 2 classes Yumma CSS does not recognize:
 "gap-4"
  - src/components/hero.tsx
 "items-center"
  - src/components/hero.tsx

Exits with code 1 when unknown classes are found - wire it into CI or let your AI agent run it as a feedback loop.

Allow custom classes

Classes you define in your own CSS are not known to Yumma CSS. Skip them with --allow:

npx @yummacss/canon --allow "docs-container,brand-logo"

Options

FlagDescription
--allow, -aComma-separated class names to skip.
--config, -cPath to the config file.

Programmatic API

import { validate } from "@yummacss/canon";

const result = await validate({ allowlist: ["docs-container"] });

for (const { className, files } of result.invalid) {
	console.log(className, files);
}

Keywords

ai

FAQs

Package last updated on 09 Jul 2026

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts