Security News
The Dark Side of Open Source
At Node Congress, Socket CEO Feross Aboukhadijeh uncovers the darker aspects of open source, where applications that rely heavily on third-party dependencies can be exploited in supply chain attacks.
remark-lint-no-unused-definitions
Advanced tools
Readme
remark-lint
rule to warn when unreferenced definitions are used.
This package checks that definitions are referenced.
You can use this package to check definitions.
This plugin is included in the following presets:
Preset | Options |
---|---|
remark-preset-lint-recommended |
This package is ESM only. In Node.js (version 16+), install with npm:
npm install remark-lint-no-unused-definitions
In Deno with esm.sh
:
import remarkLintNoUnusedDefinitions from 'https://esm.sh/remark-lint-no-unused-definitions@4'
In browsers with esm.sh
:
<script type="module">
import remarkLintNoUnusedDefinitions from 'https://esm.sh/remark-lint-no-unused-definitions@4?bundle'
</script>
On the API:
import remarkLint from 'remark-lint'
import remarkLintNoUnusedDefinitions from 'remark-lint-no-unused-definitions'
import remarkParse from 'remark-parse'
import remarkStringify from 'remark-stringify'
import {read} from 'to-vfile'
import {unified} from 'unified'
import {reporter} from 'vfile-reporter'
const file = await read('example.md')
await unified()
.use(remarkParse)
.use(remarkLint)
.use(remarkLintNoUnusedDefinitions)
.use(remarkStringify)
.process(file)
console.error(reporter(file))
On the CLI:
remark --frail --use remark-lint --use remark-lint-no-unused-definitions .
On the CLI in a config file (here a package.json
):
…
"remarkConfig": {
"plugins": [
…
"remark-lint",
+ "remark-lint-no-unused-definitions",
…
]
}
…
This package exports no identifiers.
It exports no additional TypeScript types.
The default export is
remarkLintNoUnusedDefinitions
.
unified().use(remarkLintNoUnusedDefinitions)
Warn when unreferenced definitions are used.
There are no options.
Transform (Transformer
from unified
).
Unused definitions do not contribute anything, so they can be removed.
ok.md
[Mercury][]
[mercury]: https://example.com/mercury/
No messages.
not-ok.md
[mercury]: https://example.com/mercury/
1:1-1:40: Unexpected unused definition, expected no definition or one or more references to `mercury`
gfm.md
👉 Note: this example uses GFM (
remark-gfm
).
Mercury[^mercury] is a planet.
[^Mercury]:
**Mercury** is the first planet from the Sun and the smallest
in the Solar System.
[^Venus]:
**Venus** is the second planet from
the Sun.
6:1-8:13: Unexpected unused footnote definition, expected no definition or one or more footnote references to `venus`
Projects maintained by the unified collective are compatible with maintained versions of Node.js.
When we cut a new major release, we drop support for unmaintained versions of
Node.
This means we try to keep the current release line,
remark-lint-no-unused-definitions@4
,
compatible with Node.js 16.
See contributing.md
in remarkjs/.github
for ways
to get started.
See support.md
for ways to get help.
This project has a code of conduct. By interacting with this repository, organization, or community you agree to abide by its terms.
FAQs
remark-lint rule to warn when unused definitions are found
The npm package remark-lint-no-unused-definitions receives a total of 94,242 weekly downloads. As such, remark-lint-no-unused-definitions popularity was classified as popular.
We found that remark-lint-no-unused-definitions demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 3 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
At Node Congress, Socket CEO Feross Aboukhadijeh uncovers the darker aspects of open source, where applications that rely heavily on third-party dependencies can be exploited in supply chain attacks.
Research
Security News
The Socket Research team found this npm package includes code for collecting sensitive developer information, including your operating system username, Git username, and Git email.
Security News
OpenJS is warning of social engineering takeovers targeting open source projects after receiving a credible attempt on the foundation.