Gathering detailed insights and metrics for mdast-util-to-markdown
Gathering detailed insights and metrics for mdast-util-to-markdown
Installations
npm install mdast-util-to-markdownReleases
41
Contributors
12
Developer
Developer Guide
BETA
Module System
ESM
Min. Node Version
Typescript Support
Yes
Node Version
23.1.0
NPM Version
10.9.0
Statistics
99 Stars
200 Commits
20 Forks
9 Watching
1 Branches
12 Contributors
Updated on 18 Nov 2024
Bundle Size
49.71 kB
Minified
18.21 kB
Minified + Gzipped
Languages
JavaScript (100%)
Total Downloads
Cumulative downloads
Total Downloads
700,326,993
Last day
-0.9%
1,421,241
Compared to previous day
Last week
4.1%
7,522,555
Compared to previous week
Last month
16.6%
31,071,998
Compared to previous month
Last year
61.5%
294,997,405
Compared to previous year
Daily Downloads
Weekly Downloads
Monthly Downloads
Yearly Downloads
Dependencies
9
Versions
mdast-util-to-markdown
mdast utility that turns a syntax tree into markdown.
Contents
- What is this?
- When should I use this?
- Install
- Use
- API
- List of extensions
- Syntax
- Syntax tree
- Types
- Compatibility
- Security
- Related
- Contribute
- License
What is this?
This package is a utility that takes an mdast syntax tree as input and turns it into serialized markdown.
This utility is a low level project.
It’s used in remark-stringify, which focusses on making it
easier to transform content by abstracting these internals away.
When should I use this?
If you want to handle syntax trees manually, use this. For an easier time processing content, use the remark ecosystem instead.
You can combine this utility with other utilities to add syntax extensions.
Notable examples that deeply integrate with it are
mdast-util-gfm,
mdast-util-mdx,
mdast-util-frontmatter,
mdast-util-math, and
mdast-util-directive.
Install
This package is ESM only. In Node.js (version 16+), install with npm:
1npm install mdast-util-to-markdown
In Deno with esm.sh:
1import {toMarkdown} from 'https://esm.sh/mdast-util-to-markdown@2'
In browsers with esm.sh:
1<script type="module"> 2 import {toMarkdown} from 'https://esm.sh/mdast-util-to-markdown@2?bundle' 3</script>
Use
Say our module example.js looks as follows:
1/** 2 * @import {Root} from 'mdast' 3 */ 4 5import {toMarkdown} from 'mdast-util-to-markdown' 6 7/** @type {Root} */ 8const tree = { 9 type: 'root', 10 children: [ 11 { 12 type: 'blockquote', 13 children: [ 14 {type: 'thematicBreak'}, 15 { 16 type: 'paragraph', 17 children: [ 18 {type: 'text', value: '- a\nb !'}, 19 { 20 type: 'link', 21 url: 'example.com', 22 children: [{type: 'text', value: 'd'}] 23 } 24 ] 25 } 26 ] 27 } 28 ] 29} 30 31console.log(toMarkdown(tree))
…now running node example.js yields:
1> *** 2> 3> \- a 4> b \
👉 Note: observe the properly escaped characters which would otherwise turn into a list and image respectively.
API
This package exports the identifiers defaultHandlers
and toMarkdown.
There is no default export.
toMarkdown(tree[, options])
Turn an mdast syntax tree into markdown.
Parameters
Returns
Serialized markdown representing tree (string).
defaultHandlers
Default (CommonMark) handlers (Handlers).
ConstructName
Construct names for things generated by mdast-util-to-markdown (TypeScript
type).
This is an enum of strings, each being a semantic label, useful to know when
serializing whether we’re for example in a double (") or single (') quoted
title.
Type
1type ConstructName = ConstructNameMap[keyof ConstructNameMap]
ConstructNameMap
Interface of registered constructs (TypeScript type).
Type
1interface ConstructNameMap { /* see code */ }
When working on extensions that use new constructs, extend the corresponding interface to register its name:
1declare module 'mdast-util-to-markdown' { 2 interface ConstructNameMap { 3 // Register a new construct name (value is used, key should match it). 4 gfmStrikethrough: 'gfmStrikethrough' 5 } 6}
Handle
Handle a particular node (TypeScript type).
Parameters
node(any) — expected mdast nodeparent(Node, optional) — parent ofnodestate(State) — info passed around about the current stateinfo(Info) — info on the surrounding of the node that is serialized
Returns
Serialized markdown representing node (string).
Handlers
Handle particular nodes (TypeScript type).
Each key is a node type (Node['type']), each value its corresponding handler
(Handle).
Type
1type Handlers = Record<Node['type'], Handle>
Info
Info on the surrounding of the node that is serialized (TypeScript type).
Fields
now(Point) — current pointlineShift(number) — number of columns each line will be shifted by wrapping nodesbefore(string) — characters before this (guaranteed to be one, can be more)after(string) — characters after this (guaranteed to be one, can be more)
Join
How to join two blocks (TypeScript type).
“Blocks” are typically joined by one blank line. Sometimes it’s nicer to have them flush next to each other, yet other times they cannot occur together at all.
Join functions receive two adjacent siblings and their parent and what they return defines how many blank lines to use between them.
Parameters
left(Node) — first of two adjacent siblingsright(Node) — second of two adjacent siblingsparent(Node) — parent of the two siblingsstate(State) — info passed around about the current state
Returns
How many blank lines to use between the siblings (boolean, number,
optional).
Where true is as passing 1 and false means the nodes cannot be
joined by a blank line, such as two adjacent block quotes or indented code
after a list, in which case a comment will be injected to break them up:
1> Quote 1 2 3<!----> 4 5> Quote 2
👉 Note: abusing this feature will break markdown. One such example is when returning
0for two paragraphs, which will result in the text running together, and in the future to be seen as one paragraph.
Map
Map function to pad a single line (TypeScript type).
Parameters
value(string) — a single line of serialized markdownline(number) — line number relative to the fragmentblank(boolean) — whether the line is considered blank in markdown
Returns
Padded line (string).
Options
Configuration (TypeScript type).
Fields
The following fields influence how markdown is serialized.
options.bullet
Marker to use for bullets of items in unordered lists ('*', '+', or '-',
default: '*').
There are three cases where the primary bullet cannot be used:
- when three or more list items are on their own, the last one is empty, and
bulletis also a validrule:* - +; this would turn into a thematic break if serialized with three primary bullets;bulletOtheris used for the last item - when a thematic break is the first child of a list item and
bulletis the same character asrule:- ***; this would turn into a single thematic break if serialized with primary bullets;bulletOtheris used for the item - when two unordered lists appear next to each other:
* a\n- b;bulletOtheris used for such lists
options.bulletOther
Marker to use in certain cases where the primary bullet doesn’t work ('*',
'+', or '-', default: '-' when bullet is '*', '*' otherwise).
Cannot be equal to bullet.
options.bulletOrdered
Marker to use for bullets of items in ordered lists ('.' or ')', default:
'.').
There is one case where the primary bullet for ordered items cannot be used:
- when two ordered lists appear next to each other:
1. a\n2) b; to solve that,'.'will be used whenbulletOrderedis')', and'.'otherwise
options.closeAtx
Whether to add the same number of number signs (#) at the end of an ATX
heading as the opening sequence (boolean, default: false).
options.emphasis
Marker to use for emphasis ('*' or '_', default: '*').
options.fence
Marker to use for fenced code ('`' or '~', default: '`').
options.fences
Whether to use fenced code always (boolean, default: true).
The default is to use fenced code if there is a language defined, if the code is
empty, or if it starts or ends in blank lines.
options.incrementListMarker
Whether to increment the counter of ordered lists items (boolean, default:
true).
options.listItemIndent
How to indent the content of list items ('mixed', 'one', or 'tab',
default: 'one').
Either with the size of the bullet plus one space (when 'one'), a tab stop
('tab'), or depending on the item and its parent list ('mixed', uses 'one'
if the item and list are tight and 'tab' otherwise).
options.quote
Marker to use for titles ('"' or "'", default: '"').
options.resourceLink
Whether to always use resource links (boolean, default: false).
The default is to use autolinks (<https://example.com>) when possible
and resource links ([text](url)) otherwise.
options.rule
Marker to use for thematic breaks ('*', '-', or '_', default: '*').
options.ruleRepetition
Number of markers to use for thematic breaks (number, default: 3, min: 3).
options.ruleSpaces
Whether to add spaces between markers in thematic breaks (boolean, default:
false).
options.setext
Whether to use setext headings when possible (boolean, default: false).
The default is to always use ATX headings (# heading) instead of setext
headings (heading\n=======).
Setext headings cannot be used for empty headings or headings with a rank of
three or more.
options.strong
Marker to use for strong ('*' or '_', default: '*').
options.tightDefinitions
Whether to join definitions without a blank line (boolean, default: false).
The default is to add blank lines between any flow (“block”) construct.
Turning this option on is a shortcut for a Join function like so:
1function joinTightDefinitions(left, right) { 2 if (left.type === 'definition' && right.type === 'definition') { 3 return 0 4 } 5}
options.handlers
Handle particular nodes (Handlers, optional).
options.join
How to join blocks (Array<Join>, optional).
options.unsafe
Schemas that define when characters cannot occur
(Array<Unsafe>, optional).
options.extensions
List of extensions (Array<Options>, default: []).
Each extension is an object with the same interface as Options itself.
SafeConfig
Configuration passed to state.safe (TypeScript type).
Fields
before(string) — characters before this (guaranteed to be one, can be more)after(string) — characters after this (guaranteed to be one, can be more)encode(Array<string>, optional) — extra characters that must be encoded (as character references) instead of escaped (character escapes). Only ASCII punctuation will use character escapes, so you never need to pass non-ASCII-punctuation here
State
Info passed around about the current state (TypeScript type).
Fields
stack(Array<ConstructName>) — stack of constructs we’re inindexStack(Array<number>) — positions of child nodes in their parentsassociationId((node: Association) => string) — get an identifier from an association to match it to others (seeAssociation)enter((construct: ConstructName) => () => undefined) — enter a construct (returns a corresponding exit function) (seeConstructName)indentLines((value: string, map: Map) => string) — pad serialized markdown (seeMap)compilePattern((pattern: Unsafe) => RegExp) — compile an unsafe pattern to a regex (seeUnsafe)containerFlow((parent: Node, info: Info) => string) — serialize flow children (seeInfo)containerPhrasing((parent: Node, info: Info) => string) — serialize phrasing children (seeInfo)createTracker((info: Info) => Tracker) — track positional info in the output (seeInfo,Tracker)safe((value: string, config: SafeConfig) => string) — make a string safe for embedding (seeSafeConfig)options(Options) — applied user configurationunsafe(Array<Unsafe>) — applied unsafe patternsjoin(Array<Join>) — applied join handlershandle(Handle) — call the configured handler for the given nodehandlers(Handlers) — applied handlersbulletCurrent(stringorundefined) — list marker currently in usebulletLastUsed(stringorundefined) — list marker previously in use
Tracker
Track positional info in the output (TypeScript type).
This info isn’t used yet but such functionality will allow line wrapping, source maps, etc.
Fields
current(() => Info) — get current tracked infoshift((value: number) => undefined) — define a relative increased line shift (the typical indent for lines)move((value: string) => string) — move past some generated markdown
Unsafe
Schema that defines when a character cannot occur (TypeScript type).
Fields
character(string) — single unsafe characterinConstruct(Array<ConstructName>,ConstructName, optional) — constructs where this is badnotInConstruct(Array<ConstructName>,ConstructName, optional) — constructs where this is fine againbefore(string, optional) —characteris bad when this is before it (cannot be used together withatBreak)after(string, optional) —characteris bad when this is after itatBreak(boolean, optional) —characteris bad at a break (cannot be used together withbefore)
List of extensions
syntax-tree/mdast-util-directive— directivessyntax-tree/mdast-util-frontmatter— frontmatter (YAML, TOML, more)syntax-tree/mdast-util-gfm— GFMsyntax-tree/mdast-util-gfm-autolink-literal— GFM autolink literalssyntax-tree/mdast-util-gfm-footnote— GFM footnotessyntax-tree/mdast-util-gfm-strikethrough— GFM strikethroughsyntax-tree/mdast-util-gfm-table— GFM tablessyntax-tree/mdast-util-gfm-task-list-item— GFM task list itemssyntax-tree/mdast-util-math— mathsyntax-tree/mdast-util-mdx— MDXsyntax-tree/mdast-util-mdx-expression— MDX expressionssyntax-tree/mdast-util-mdx-jsx— MDX JSXsyntax-tree/mdast-util-mdxjs-esm— MDX ESM
Syntax
Markdown is serialized according to CommonMark but care is taken to format in such a way that the resulting markdown should work with most markdown parsers. Extensions can add support for custom syntax.
Syntax tree
The syntax tree is mdast.
Types
This package is fully typed with TypeScript.
It exports the additional types
ConstructName,
ConstructNameMap,
Handle,
Handlers,
Info,
Join,
Map,
Options,
SafeConfig,
State, and
Unsafe.
Compatibility
Projects maintained by the unified collective are compatible with maintained versions of Node.js.
When we cut a new major release, we drop support for unmaintained versions of
Node.
This means we try to keep the current release line, mdast-util-to-markdown@^2,
compatible with Node.js 16.
Security
mdast-util-to-markdown will do its best to serialize markdown to match the
syntax tree, but there are several cases where that is impossible.
It’ll do its best, but complete roundtripping is impossible given that any value
could be injected into the tree.
As markdown is sometimes used for HTML, and improper use of HTML can open you up
to a cross-site scripting (XSS) attack, use of mdast-util-to-markdown
and parsing it again later could potentially be unsafe.
When parsing markdown afterwards and then going to HTML, use something like
hast-util-sanitize to make the tree safe.
Related
syntax-tree/mdast-util-from-markdown— parse markdown to mdastmicromark/micromark— parse markdownremarkjs/remark— process markdown
Contribute
See contributing.md in syntax-tree/.github for
ways to get started.
See support.md for ways to get help.
This project has a code of conduct. By interacting with this repository, organization, or community you agree to abide by its terms.
License
No vulnerabilities found.
Reason
no binaries found in the repo
Reason
no dangerous workflow patterns detected
Reason
13 commit(s) and 5 issue activity found in the last 90 days -- score normalized to 10
Reason
0 existing vulnerabilities detected
Reason
license file detected
Details
- Info: project has a license file: license:0
- Info: FSF or OSI recognized license: MIT License: license:0
Reason
security policy file detected
Details
- Info: security policy file detected: github.com/syntax-tree/.github/security.md:1
- Info: Found linked content: github.com/syntax-tree/.github/security.md:1
- Info: Found disclosure, vulnerability, and/or timelines in security policy: github.com/syntax-tree/.github/security.md:1
- Info: Found text in security policy: github.com/syntax-tree/.github/security.md:1
Reason
Found 0/30 approved changesets -- score normalized to 0
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Warn: no topLevel permission defined: .github/workflows/bb.yml:1
- Warn: no topLevel permission defined: .github/workflows/main.yml:1
- Info: no jobLevel write permissions found
Reason
dependency not pinned by hash detected -- score normalized to 0
Details
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/bb.yml:5: update your workflow using https://app.stepsecurity.io/secureworkflow/syntax-tree/mdast-util-to-markdown/bb.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:6: update your workflow using https://app.stepsecurity.io/secureworkflow/syntax-tree/mdast-util-to-markdown/main.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:7: update your workflow using https://app.stepsecurity.io/secureworkflow/syntax-tree/mdast-util-to-markdown/main.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/syntax-tree/mdast-util-to-markdown/main.yml/main?enable=pin
- Warn: npmCommand not pinned by hash: .github/workflows/main.yml:11
- Info: 0 out of 2 GitHub-owned GitHubAction dependencies pinned
- Info: 0 out of 2 third-party GitHubAction dependencies pinned
- Info: 0 out of 1 npmCommand dependencies pinned
Reason
no SAST tool detected
Details
- Warn: no pull requests merged into dev branch
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
branch protection not enabled on development/release branches
Details
- Warn: branch protection not enabled for branch 'main'
Score
5
/10
Last Scanned on 2024-11-18
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More