Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
How To Use • Contributing • Website
Prerequisites: Node.js (>=6.14), npm version 3+.
There are two ways to install HTMLHint: globally and locally.
In case you want to include HTMLHint as part of your project, you can install it locally using NPM:
$ npm install htmlhint --save-dev
After that, You can run HTMLHint on any file or directory like this:
$ ./node_modules/.bin/htmlhint www/index.html
$ ./node_modules/.bin/htmlhint www/**/*.html
If you want to make HTMLHint available to tools that run across all of your projects, you can install HTMLHint globally using NPM:
$ npm install htmlhint -g
After that, you can run HTMLHint on any file like this:
$ htmlhint www/index.html
$ htmlhint www/**/*.html
You can even launch HTMLHint to analyse an URL:
$ htmlhint https://htmlhint.com/
Search .htmlhintrc
file in current directory and all parent directories:
$ htmlhint
$ htmlhint test.html
Custom config file:
$ htmlhint --config htmlhint.conf test.html
Custom rules:
$ htmlhint --rules tag-pair,id-class-value=underline index.html
Inline rules in test.html
:
<!--htmlhint tag-pair,id-class-value:underline -->
<html>
<head>
...
This project exists thanks to all these people. Contribute.
Thank you to all our backers! Become a backer.
Support this project by becoming a sponsor. Your logo will show up here with a link to your website. Become a sponsor.
FAQs
The Static Code Analysis Tool for your HTML
The npm package htmlhint receives a total of 66,865 weekly downloads. As such, htmlhint popularity was classified as popular.
We found that htmlhint demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.