Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
remarkable
Advanced tools
The 'remarkable' npm package is a powerful markdown parser that allows you to convert markdown text into HTML. It is highly configurable and supports a wide range of markdown features, making it suitable for various use cases such as rendering markdown content on websites, converting markdown files to HTML, and more.
Basic Markdown to HTML Conversion
This feature allows you to convert basic markdown text into HTML. The code sample demonstrates how to convert a markdown heading into HTML.
const Remarkable = require('remarkable');
const md = new Remarkable();
const html = md.render('# Hello, world!');
console.log(html);
Custom Syntax Highlighting
This feature allows you to add custom syntax highlighting to code blocks in your markdown. The code sample demonstrates how to use the 'highlight.js' library to highlight JavaScript code within a markdown code block.
const Remarkable = require('remarkable');
const hljs = require('highlight.js');
const md = new Remarkable({
highlight: function (str, lang) {
if (lang && hljs.getLanguage(lang)) {
try {
return hljs.highlight(lang, str).value;
} catch (__) {}
}
return ''; // use external default escaping
}
});
const html = md.render('```js\nconsole.log("Hello, world!");\n```');
console.log(html);
Customizing Markdown Rendering
This feature allows you to customize various aspects of markdown rendering. The code sample demonstrates how to enable HTML tags, convert newlines to <br> tags, and automatically convert URLs to links.
const Remarkable = require('remarkable');
const md = new Remarkable({
html: true, // Enable HTML tags in source
xhtmlOut: true, // Use '/' to close single tags (<br />)
breaks: true, // Convert '\n' in paragraphs into <br>
langPrefix: 'language-', // CSS language prefix for fenced blocks
linkify: true, // Autoconvert URL-like text to links
typographer: true // Enable smartypants and other sweet transforms
});
const html = md.render('# Hello, world!\nThis is a [link](http://example.com).');
console.log(html);
The 'marked' package is another popular markdown parser that is known for its speed and flexibility. It offers similar functionality to 'remarkable' but is often preferred for its performance and ease of use.
The 'markdown-it' package is a highly extensible markdown parser that supports plugins and a wide range of markdown features. It is similar to 'remarkable' in terms of configurability and feature set, but it also offers additional plugins for extended functionality.
The 'showdown' package is a markdown to HTML converter that is known for its simplicity and ease of use. It provides a straightforward API for converting markdown to HTML and is often used in projects where simplicity is a priority.
Markdown parser done right. Fast and easy to extend.
node.js:
npm install remarkable --save
bower:
bower install remarkable --save
browser (CDN):
var Remarkable = require('remarkable');
var md = new Remarkable();
console.log(md.render('# Remarkable rulezz!'));
// => <h1>Remarkable rulezz!</h1>
By default remarkable is configured to be similar to GFM, but with HTML disabled. This is easy to change if you prefer to use different settings.
There are two ways to define options.
Define options in the constructor:
// Actual default values
var md = new Remarkable({
html: false, // Enable HTML tags in source
xhtmlOut: false, // Use '/' to close single tags (<br />)
breaks: false, // Convert '\n' in paragraphs into <br>
langPrefix: 'language-', // CSS language prefix for fenced blocks
linkify: false, // Autoconvert URL-like text to links
// Enable some language-neutral replacement + quotes beautification
typographer: false,
// Double + single quotes replacement pairs, when typographer enabled,
// and smartquotes on. Set doubles to '«»' for Russian, '„“' for German.
quotes: '“”‘’',
// Highlighter function. Should return escaped HTML,
// or '' if the source string is not changed
highlight: function (/*str, lang*/) { return ''; }
});
console.log(md.render('# Remarkable rulezz!'));
// => <h1>Remarkable rulezz!</h1>
Or define options via the .set()
method:
var Remarkable = require('remarkable');
var md = new Remarkable();
md.set({
html: true,
breaks: true
});
Note: To achieve the best possible performance, don't modify a Remarkable
instance on the fly. If you need multiple configurations it's best to create
multiple instances and initialize each with a configuration that is ideal for
that instance.
Remarkable offers some "presets" as a convenience to quickly enable/disable active syntax rules and options for common use cases.
Enable strict CommonMark mode with the commonmark
preset:
var Remarkable = require('remarkable');
var md = new Remarkable('commonmark');
Enable all available rules (but still with default options, if not set):
var Remarkable = require('remarkable');
var md = new Remarkable('full');
// Or with options:
var md = new Remarkable('full', {
html: true,
linkify: true,
typographer: true
});
Apply syntax highlighting to fenced code blocks with the highlight
option:
var Remarkable = require('remarkable');
var hljs = require('highlight.js') // https://highlightjs.org/
// Actual default values
var md = new Remarkable({
highlight: function (str, lang) {
if (lang && hljs.getLanguage(lang)) {
try {
return hljs.highlight(lang, str).value;
} catch (err) {}
}
try {
return hljs.highlightAuto(str).value;
} catch (err) {}
return ''; // use external default escaping
}
});
Enabled by default:
Disabled by default:
19^th^
H~2~0
++inserted text++
(experimental)==marked text==
(experimental)* Experimental extensions can be changed later for something like Critic Markup, but you will still be able to use old-style rules via external plugins if you prefer.
var md = new Remarkable();
md.inline.ruler.enable([ 'ins', 'mark' ]);
md.block.ruler.disable([ 'table' ]);
// Enable everything
md = new Remarkable('full', {
html: true,
linkify: true,
typographer: true,
});
//
// Manually enable rules, disabled by default:
//
var md = new Remarkable();
md.block.ruler.core([
'abbr'
]);
md.block.ruler.enable([
'footnote',
'deflist'
]);
md.block.ruler.enable([
'footnote_inline',
'ins',
'mark',
'sub',
'sup'
]);
Although full-weight typographical replacements are language specific, remarkable
provides coverage for the most common and universal use cases:
var Remarkable = require('remarkable');
var md = new Remarkable({
typographer: true,
quotes: '“”‘’'
});
// Disable rules at all:
md.core.ruler.disable([ 'replacements', 'smartquotes' ]);
// Actual default replacements:
//
// '' → ‘’
// "" → “”. Set '«»' for Russian, '„“' for German, empty to disable
// (c) (C) → ©
// (tm) (TM) → ™
// (r) (R) → ®
// +- → ±
// (p) (P) -> §
// ... → … (also ?.... → ?.., !.... → !..)
// ???????? → ???, !!!!! → !!!, `,,` → `,`
// -- → –, --- → —
//
Of course, you can also add your own rules or replace the defaults with something more advanced or specific to your language.
Easily load plugins with the .use()
method:
var md = new Remarkable();
md.use(plugin1)
.use(plugin2, opts)
.use(plugin3);
Big thanks to John MacFarlane for his work on the CommonMark spec and reference implementations. His work saved us a lot of time during this project's development.
Related Links:
Parser consists of several responsibilities chains, filled with rules. You can reconfigure anyone as you wish. Render also can be modified and extended. See source code to understand details. Pay attention to these properties:
Remarkable.core
Remarkable.core.ruler
Remarkable.block
Remarkable.block.ruler
Remarkable.inline
Remarkable.inline.ruler
Remarkable.renderer
Remarkable.renderer.rules
Here is result of CommonMark spec parse at Core i5 2.4 GHz (i5-4258U):
$ benchmark/benchmark.js spec
Selected samples: (1 of 27)
> spec
Sample: spec.txt (110610 bytes)
> commonmark-reference x 40.42 ops/sec ±4.07% (51 runs sampled)
> current x 74.99 ops/sec ±4.69% (67 runs sampled)
> current-commonmark x 93.76 ops/sec ±1.23% (79 runs sampled)
> marked-0.3.2 x 22.92 ops/sec ±0.79% (41 runs sampled)
As you can see, remarkabe
doesn't pay with speed for it's flexibility. Because
it's written in monomorphyc style and use JIT inline caches effectively.
FAQs
Markdown parser, done right. 100% Commonmark support, extensions, syntax plugins, high speed - all in one.
We found that remarkable demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 8 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.