Research
2025 Report: Destructive Malware in Open Source Packages
Destructive malware is rising across open source registries, using delays and kill switches to wipe code, break builds, and disrupt CI/CD.
By Kush Pandya - Dec 24, 2025
afinn-111
Contents
- What is this?
- When should I use this?
- Install
- Use
- API
- Notes
- Types
- Compatibility
- Related
- Contribute
- Security
- License
What is this?
This package gives you easy access to afinn-111.
When should I use this?
You’re probably dealing with natural language, and know you need this, if you’re here!
Install
This package is ESM only. In Node.js (version 12.20+, 14.14+, 16.0+), install with npm:
npm install afinn-111
In Deno with esm.sh:
import {afinn111} from 'https://esm.sh/afinn-111@2'
In browsers with esm.sh:
<script type="module">
import {afinn111} from 'https://esm.sh/afinn-111@2?bundle'
</script>
Use
import {afinn111} from 'afinn-111'
afinn111.positive //=> 2
afinn111['self-deluded'] //=> -2
API
This package exports the identifier afinn111.
There is no default export.
afinn111
afinn-111 maps entries to valence ratings (Object.<string, number>).
👉 Note: Be careful when accessing unknown properties on the
afinn-111object, words such as “constructor” or “toString” might occur. It’s recommended to use ahasOwnPropertycheck beforehand.
Notes
Note the AFINN entries are:
- all lower case
- can contain numbers (only case:
n00b) - can contain spaces (cases:
can't stand,cashing in,cool stuff,does not work,dont like,fed up,green wash,green washing,messing up,no fun,not good,not working,right direction,screwed up,some kind) - can contain apostrophes (only case:
can't stand) - can contain diaeresis (only case:
naïve) - can contain dashes (cases:
cover-up,made-up,once-in-a-lifetime,self-confident,self-deluded,short-sighted,short-sightedness,son-of-a-bitch)
Types
This package is fully typed with TypeScript. It exports no additional types.
Compatibility
This package is at least compatible with all maintained versions of Node.js. As of now, that is Node.js 14.14+, 16.0+, and 18.0+. It also works in Deno and modern browsers.
Related
afinn-96— AFINN list from 2009, containing 1468 entriesafinn-165— AFINN list from 2015, containing 3382 entriesemoji-emotion— Like AFINN, but for emojipolarity— Detect the polarity of text, based onafinn-165andemoji-emotion
Contribute
Yes please! See How to Contribute to Open Source.
Security
This package is safe.
License
FAQs
AFINN 111 (list of English words rated for valence) in JSON
The npm package afinn-111 receives a total of 7 weekly downloads. As such, afinn-111 popularity was classified as not popular.
We found that afinn-111 demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 2 open source maintainers collaborating on the project.
Package last updated on 31 Oct 2022
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
Engineering with AI Podcast: The Promise of AI-First Development
Socket CTO Ahmad Nassri shares practical AI coding techniques, tools, and team workflows, plus what still feels noisy and why shipping remains human-led.
By Sarah Gooding - Dec 24, 2025
Research
/Security News
Spearphishing Campaign Abuses npm Registry to Target U.S. and Allied Manufacturing and Healthcare Organizations
A five-month operation turned 27 npm packages into durable hosting for browser-run lures that mimic document-sharing portals and Microsoft sign-in, targeting 25 organizations across manufacturing, industrial automation, plastics, and healthcare for credential theft.
By Nicholas Anderson, Kirill Boychenko - Dec 23, 2025