Research
Security News
Malicious npm Package Targets Solana Developers and Hijacks Funds
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
lesshint
is a tool to aid you in writing clean and consistent Less.
Node.js 4 (or later) is required.
Run the following from the command line to install lesshint
(add -g
to install globally):
npm install lesshint
For information on how to configure lesshint
and other available options, see the user guide.
Since lesshint
is highly customizable we recommend you to also take a look at the available rule options to tailor it to your needs.
Run lesshint
from the command-line by passing one or more files/directories to recursively scan.
lesshint src/less/ lib/style.less
Available Flags | Description |
---|---|
-c /--config | Specify the configuration file to use (will be merged with defaults). |
-e /--exclude | A minimatch glob pattern or a file to exclude from being linted. |
-l /--linters | Paths to custom linters to add to the built-in list. See "Linters" below for more information. |
-r /--reporter | The reporter to use. See "Reporters" below for more information. |
-V /--version | Show the version. |
-x /--max-warnings | Number of warnings to allow before exiting with a non-zero code. Omit it to always exit with zero code. |
Depending on the linter results and options supplied, the exit status code returned by the CLI will differ.
Exit status code | Description |
---|---|
0 | Everything is alright or only linting errors with a severity of warning were found. |
1 | One or more linting errors with a severity of error were found. Or when --max-warnings flag is set and the number of linting errors with a severity of warning found is greater than the given value. |
66 | No files to lint were supplied. |
70 | An unknown error occurred within lesshint , possibly a bug. Please file an issue! |
78 | Something is wrong with the config file, most likely invalid JSON. |
These codes were chosen with regards to the preferable exit codes.
lesshint
.lesshint
.lesshint
.In addition to the linters included with lesshint
, it's also possible to include custom ones. For example to check something team or project specific.
For more information on using custom linters, see the user guide.
Reporters are small modules that can be used to perform actions with the lint results, for example printing something to the terminal or generate custom reports.
For more information on using reporters, see the user guide.
lesshint
's public Node API reference.4.1.0 (2017-07-24)
Lesshint.configure()
now returns the final config object. (076f8fe)parseValue
util can now accept postcss-values-parser
options. (c2f8d53)postcss-values-parser
to 1.3.0
. (e49f4d7)borderZero
(836ff0f)colorVariables
(277f1aa)decimalZero
(d33fa2c)hexLength
(e599d8b)hexNotation
(60e7485)hexValidation
(7b441aa)idSelector
(d8b298b)importantRule
(ba733a6)propertyUnits
(da6353e)qualifyingElement
(58a3f03)selectorNaming
(7b2f08e)spaceAfterPropertyName
(871bf2c)spaceAfterPropertyValue
(7395a16)spaceBeforeBrace
(36979f4)universalSelector
(4aaf666)urlFormat
(56a4c64)urlQuotes
(56a4c64)variableValue
(de75d7e)zeroUnit
(b24c91a)FAQs
A tool to aid you in writing clean and consistent Less.
The npm package lesshint receives a total of 6,176 weekly downloads. As such, lesshint popularity was classified as popular.
We found that lesshint demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
Security News
Research
Socket researchers have discovered malicious npm packages targeting crypto developers, stealing credentials and wallet data using spyware delivered through typosquats of popular cryptographic libraries.
Security News
Socket's package search now displays weekly downloads for npm packages, helping developers quickly assess popularity and make more informed decisions.