Security News
AI Agent Lands PRs in Major OSS Projects, Targets Maintainers via Cold Outreach
An AI agent is merging PRs into major OSS projects and cold-emailing maintainers to drum up more work.
By Sarah Gooding - Feb 14, 2026
Latest Threat Research:Malicious dYdX Packages Published to npm and PyPI After Maintainer Compromise.Details →
ObsoHTML, the Obsolete HTML Checker
ObsoHTML is a Node.js script designed to scan HTML, PHP, Nunjucks, Twig, JavaScript, and TypeScript files for obsolete or proprietary HTML attributes and elements (in scripts, it would catch JSX syntax). It helps you identify and update deprecated HTML code to be more sure to use web standards.
ObsoHTML has inherent limitations and may not find all obsolete attributes and elements. If you run into a problem, please file an issue.
Usage
1. As a Node Module
Installation
npm i obsohtml
(To install ObsoHTML globally, use the -g flag, as in npm i -g obsohtml.)
Execution
The script accepts a folder path as a command line option, which can be specified in both short form (-f) and long form (--folder). The folder path can be either absolute or relative.
The script can be run in “verbose” mode by appending -v or --verbose to the command. This will show information about files and directories that were skipped.
Example Commands
Use the default directory (user home directory):
npx obsohtml
Specify a folder using an absolute path (easiest and most common use case):
npx obsohtml -f /path/to/folder
Specify a folder using a relative path:
npx obsohtml -f ../path/to/folder
2. As a Standalone Script
Installation
Download or fork the source repository.
Execution
As mentioned above, the script accepts a folder (-f, --folder) and can be run in “verbose” mode (-v, --verbose).
Example Commands
(All commands as run from the root directory of the downloaded repository.)
Use the default directory (user home directory):
node bin/obsohtml.js
Specify a folder using an absolute path (easiest and most common use case):
node bin/obsohtml.js -f /path/to/folder
Specify a folder using a relative path:
node bin/obsohtml.js -f ../path/to/folder
Output
The script will output messages to the console indicating any obsolete attributes or elements found in the scanned files, along with the file paths where they were detected.
Background
This started as an experiment, in which I used AI to produce this little HTML quality helper, its tests, and its documentation. While it’s pretty straightforward, I’m sure to have missed something. Please file an issue or contact me directly if you spot a problem or have a suggestion.
Acknowledgments
Thanks to @mattbrundage, @FabianBeiner, and @AndrewMac for helping to make ObsoHTML better!
FAQs
Obsolete and proprietary HTML finder
The npm package obsohtml receives a total of 156 weekly downloads. As such, obsohtml popularity was classified as not popular.
We found that obsohtml demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 11 Feb 2026
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
/Security News
Malicious Chrome Extension Steals Meta Business Manager Exports and TOTP 2FA Seeds
Chrome extension CL Suite by @CLMasters neutralizes 2FA for Facebook and Meta Business accounts while exfiltrating Business Manager contact and analytics data.
By Kirill Boychenko - Feb 13, 2026
Security News
AI Agent Submits PR to Matplotlib, Publishes Angry Blog Post After Rejection
After Matplotlib rejected an AI-written PR, the agent fired back with a blog post, igniting debate over AI contributions and maintainer burden.
By Sarah Gooding - Feb 12, 2026