New: Introducing PHP and Composer Support.Read the Announcement
Socket
Book a DemoInstallSign in
Socket
Book a DemoInstallSign in

glslify-hex

Package Overview
Dependencies
Maintainers
1
Versions
6
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

glslify-hex

A transform stream for [glslify](http://github.com/chrisdickinson/glslify) that replaces CSS-style hexadecimal colors with `vec3/vec4` definitions.

latest
Source
npmnpm
Version
2.1.1
Version published
Weekly downloads
117
-6.4%
Maintainers
1
Weekly downloads
 
Created
Source

glslify-hex experimental

A transform stream for glslify that replaces CSS-style hexadecimal colors with vec3/vec4 definitions.

Usage

NPM

Once you've enabled the stream, you simply put your hex colors in your file like so:

void main() {
  gl_FragColor = vec4(#ff0000, 1.0);
}

The above color will be (naïvely) replaced with a GLSL vec3 definition, i.e.:

void main() {
  gl_FragColor = vec4(vec3(1.0, 0.0, 0.0), 1.0);
}

You can also use 8-digit hexadecimals for vec4 definitions. The above example could also be expressed like so:

void main() {
  gl_FragColor = #ff0000ff;
}

To use glslify transform streams, you currently need to use glslify-stream directly:

var createStream = requrire('glslify-stream')

var stream = createStream('./shader.vert', {
  transform: ['glslify-hex']
})

stream.pipe(process.stdout)

This might have changed by the time you read this though, so be sure to double check the glslify documentation!

License

MIT. See LICENSE.md for details.

Keywords

glslify
transform
stream
hex
hexadecimal
color

FAQs

Package last updated on 30 Sep 2016

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

Cline CLI npm Package Compromised via Suspected Cache Poisoning Attack

Security News

Cline CLI npm Package Compromised via Suspected Cache Poisoning Attack

A compromised npm publish token was used to push a malicious postinstall script in cline@2.3.0, affecting the popular AI coding agent CLI with 90k weekly downloads.

By Sarah Gooding  -  Feb 18, 2026
Socket Brings Supply Chain Security to skills.sh

Product

Socket Brings Supply Chain Security to skills.sh

Socket is now scanning AI agent skills across multiple languages and ecosystems, detecting malicious behavior before developers install, starting with skills.sh's 60,000+ skills.

By Wenxin Jiang, Alexandros Kapravelos  -  Feb 17, 2026
Introducing PHP and Composer Support in Socket

Product

Introducing PHP and Composer Support in Socket

Socket now supports PHP with full Composer and Packagist integration, enabling developers to search packages, generate SBOMs, and protect their PHP dependencies from supply chain threats.

By Trevor Norris  -  Feb 17, 2026