Research
Security News
Malicious npm Package Targets Solana Developers and Hijacks Funds
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
By Socket Research Team - Dec 02, 2024
Huge News!Announcing our $40M Series B led by Abstract Ventures.Learn More →
webhint (hint)
Quick start user guide
Once you have Node.js
v8.x on your machine, you can use npx or install hint globally
to use it.
Using npx
Run the following command:
npx hint https://example.com
This will analyze https://example.com using the default configuration.
Installing webhint globally
npm install -g --engine-strict hint
Create a .hintrc file by running this command and following the
instructions:
npm create hintrc
Scan a website:
hint https://example.com
For more in depth information on how to get started, configurations, and more, see the online user guide, or the local version for the most recent (and unstable) content.
Contributing to hint
To know more about the internals of webhint, the structure of the
project, how to create new hints, collectors, formatters, etc, take a
look at the online contributor
guide (or the local
version).
Code of Conduct
This project adheres to the JS Foundation’s code of conduct. By participating in this project you agree to abide by its terms.
License
The code is available under the Apache 2.0 license.
FAQs
The linting tool for the web
The npm package hint receives a total of 19,514 weekly downloads. As such, hint popularity was classified as popular.
We found that hint demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 5 open source maintainers collaborating on the project.
Package last updated on 16 Nov 2018
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
Research
Typosquatting Cryptographic Libraries: Malicious npm Packages Threaten Crypto Developers with Keylogging and Wallet Theft
Socket researchers have discovered malicious npm packages targeting crypto developers, stealing credentials and wallet data using spyware delivered through typosquats of popular cryptographic libraries.
By Kirill Boychenko - Nov 27, 2024
Security News
Weekly Downloads Now Available in npm Package Search Results
Socket's package search now displays weekly downloads for npm packages, helping developers quickly assess popularity and make more informed decisions.
By Sarah Gooding - Nov 26, 2024