Research
Security News
Malicious npm Package Targets Solana Developers and Hijacks Funds
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
The afinn-165 npm package provides a list of English words rated for valence with an integer between -5 and +5. It is used for sentiment analysis, allowing developers to determine the sentiment of a given text by summing the valence scores of the words in the text.
Sentiment Analysis
This feature allows you to perform sentiment analysis on a given text. The code sample demonstrates how to calculate the sentiment score of a text by summing the valence scores of the words in the text.
const afinn = require('afinn-165');
const text = 'I love programming';
const words = text.split(' ');
let sentimentScore = 0;
words.forEach(word => {
if (afinn[word.toLowerCase()]) {
sentimentScore += afinn[word.toLowerCase()];
}
});
console.log('Sentiment Score:', sentimentScore);
The sentiment package is a comprehensive library for performing sentiment analysis in JavaScript. It uses the AFINN-111 wordlist and provides additional features such as negation handling and support for emoticons. Compared to afinn-165, it offers more advanced sentiment analysis capabilities.
The vader-sentiment package is a JavaScript implementation of the VADER (Valence Aware Dictionary and sEntiment Reasoner) sentiment analysis tool. It is designed to handle social media text and provides more nuanced sentiment analysis compared to afinn-165.
The natural package is a general natural language processing library for JavaScript. It includes a variety of tools for text processing, including sentiment analysis using the AFINN-111 wordlist. It offers a broader range of NLP functionalities compared to afinn-165.
This package exposes a map of words rated for valence (“goodness” vs “badness”).
This package can be used for sentiment analysis of words.
You can use emoji-emotion
for emoji.
This package is ESM only. In Node.js (version 14.14+, 16.0+), install with npm:
npm install afinn-165
In Deno with esm.sh
:
import {afinn165} from 'https://esm.sh/afinn-165@2'
In browsers with esm.sh
:
<script type="module">
import {afinn165} from 'https://esm.sh/afinn-165@2?bundle'
</script>
import {afinn165} from 'afinn-165'
afinn165.xoxo //=> 3
afinn165.bankruptcy //=> -3
This package exports the identifier afinn165
.
There is no default export.
afinn165
Map of words to valence (Record<string, number>
).
👉 Note: be careful when accessing unknown properties on the
afinn165
object, words such as “constructor” or “toString” might occur. It’s recommended to use ahasOwnProperty
check beforehand.
AFINN 165 contains 3382 entries. 905 entries were added and two were changed. Compared to AFINN 111, the following changed:
damn
is now rated as -2
(was -4
)exasperated
, futile
, irresponsible
are now -2
(were 2)damn cute
, damn good
, kind of
,
fucking awesome
, fucking beautiful
, fucking cute
,
fucking fantastic
, fucking good
, fucking great
, fucking hot
,
fucking love
, fucking loves
, fucking perfect
environment-friendly
, game-changing
,
ill-fated
, loving-kindness
, non-approved
, post-traumatic
,
self-abuse
, self-contradictory
, side-effect
, side-effects
,
violence-related
, well-being
, well-championed
, well-developed
,
well-established
, well-focused
, well-groomed
, well-proportioned
This package is fully typed with TypeScript. It exports no additional types.
This package is at least compatible with all maintained versions of Node.js. As of now, that is Node.js 14.14+ and 16.0+. It also works in Deno and modern browsers.
afinn-96
— AFINN list from 2009 with 1468 entriesafinn-111
— AFINN list from 2011 with 2477 entriesemoji-emotion
— like AFINN but for emojipolarity
— detect the polarity of text, based on afinn-169
and emoji-emotion
Yes please! See How to Contribute to Open Source.
This package is safe.
FAQs
AFINN 165 (list of English words rated for valence) in JSON
We found that afinn-165 demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
Security News
Research
Socket researchers have discovered malicious npm packages targeting crypto developers, stealing credentials and wallet data using spyware delivered through typosquats of popular cryptographic libraries.
Security News
Socket's package search now displays weekly downloads for npm packages, helping developers quickly assess popularity and make more informed decisions.