Gathering detailed insights and metrics for remark-align
Gathering detailed insights and metrics for remark-align
Installations
npm install remark-alignReleases
83
zmarkdown@12.0.0
zmarkdown@12.0.0
Published on 27 Apr 2024
rebber-plugins@4.4.0
rebber-plugins@4.4.0
Published on 27 Apr 2024
rebber@5.5.0
rebber@5.5.0
Published on 27 Apr 2024
zmarkdown@11.4.3
zmarkdown@11.4.3
Published on 20 Apr 2024
rebber-plugins@4.3.9
rebber-plugins@4.3.9
Published on 20 Apr 2024
rehype-postfix-footnote-anchors@2.0.2
rehype-postfix-footnote-anchors@2.0.2
Published on 20 Apr 2024
Developer
zestedesavoir
Developer Guide
BETA
Module System
CommonJS
Min. Node Version
Typescript Support
No
Node Version
20.12.0
NPM Version
lerna/8.1.2/node@v20.12.0+x64 (linux)
Statistics
227 Stars
1,218 Commits
53 Forks
12 Watching
3 Branches
31 Contributors
Updated on 31 Oct 2024
Bundle Size
1.88 kB
Minified
959.00 B
Minified + Gzipped
Languages
JavaScript (98.38%)
HTML (1.06%)
CSS (0.42%)
Shell (0.14%)
Total Downloads
Cumulative downloads
Total Downloads
142,045
Last day
-10.3%
52
Compared to previous day
Last week
-51.7%
306
Compared to previous week
Last month
0.8%
1,651
Compared to previous month
Last year
108.3%
36,250
Compared to previous year
Daily Downloads
Weekly Downloads
Monthly Downloads
Yearly Downloads
Dependencies
1
Versions
ZMarkdown
This repository contains all the plugins for ZMarkdown, the Markdown engine powering Zeste de Savoir.
It is a collection of packages extending the remark processor and its MDAST syntax tree, rehype (for HTML processing) and textr (text transformation framework). It also provides MDAST to LaTeX compilation via rebber (and its plugins).
Currently, all the plugins provided only work for remark versions lesser than 13.0.0 (i.e. previous to micromark). While we intend to switch to the new system, no due date has been planned, and it requires a significant amount of work, so please be patient, or, even better, help us making the switch!
Install
Prerequisites
- node >= 18
- npm >= 9
Installation
git clone git@github.com:zestedesavoir/zmarkdown.gitnpm install
This project uses Jest for testing. It is recommended to use the locally installed version using npx, and run Jest in watch mode when developing npx jest --watch --notify (--notify sends desktop notifications when tests run).
Useful commands
npm run test: tests all packages.npm run clean: clears local dependencies, reinstalls the project and runs all tests.npm run lint: runs eslint to check the syntax of the full codebase.npm run build: builds packages using babel.npm run build -- --scope=<package>: same as above, but builds only<package>.
Packages
-
A MDAST tool to split a markdown tree into list of subtrees representing the chapters. It relies on heading depth.
-
transformation of MDAST into
latexcode. This code must be included inside a custom latex to be compiled. Have a look athttps://github.com/zestedesavoir/latex-template/blob/master/zmdocument.clsto get a working example. -
This plugin parses
*[ABBR]: abbr definitionand then replace all ABBR instance in text with a new MDAST node so thatrehypecan parse it intoabbrhtml tag. -
This plugin adds a
titleattribute to the footnote links, mainly for accessibility purpose. -
This plugin wraps (multi-line) raw HTML in
p. -
This plugin parses custom Markdown syntax to center- or right-align elements.
-
Allow to add caption to such element as image, table or blockquote.
-
This plugin parses custom Markdown syntax for Markdown source comments.
-
This plugin parses custom Markdown syntax to create new custom blocks.
-
This plugins replaces ASCII emoticons with associated image. Compatible with rehype
-
This plugin escapes HTML entities from Markdown input.
-
This plugin parses custom Markdown syntax to describe tables.
-
Allows to shift heading to custimize the way you will integrate the generated tree inside your application.
-
remark-heading-trailing-spaces
This plugin removes trailing spaces from Markdown headers.
-
Allows to add
iframeinclusion through!(url)code. -
This plugin parses custom Markdown syntax to handle keyboard keys.
-
This plugin changes how mdast footnotes are displayed by using sequential numbers as footnote references instead of user-specified strings.
-
This plugin parses custom Markdown syntax to handle subscript and superscript.
-
Micro module to fix a common typographic issue that is hard to fix with most keyboard layouts.
-
Micro module to replace
%owith‰and optionally replace the preceding space. -
Fully integrated package to be used in zeste de savoir website
License
No vulnerabilities found.
Reason
no dangerous workflow patterns detected
Reason
no binaries found in the repo
Reason
license file detected
Details
- Info: project has a license file: LICENSE-MIT:0
- Info: FSF or OSI recognized license: MIT License: LICENSE-MIT:0
Reason
dependency not pinned by hash detected -- score normalized to 4
Details
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/zestedesavoir/zmarkdown/ci.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/zestedesavoir/zmarkdown/ci.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:57: update your workflow using https://app.stepsecurity.io/secureworkflow/zestedesavoir/zmarkdown/ci.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/zestedesavoir/zmarkdown/ci.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/zestedesavoir/zmarkdown/ci.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/prepublish.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/zestedesavoir/zmarkdown/prepublish.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/prepublish.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/zestedesavoir/zmarkdown/prepublish.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/prepublish.yml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/zestedesavoir/zmarkdown/prepublish.yml/master?enable=pin
- Warn: npmCommand not pinned by hash: .github/workflows/ci.yml:49
- Info: 0 out of 6 GitHub-owned GitHubAction dependencies pinned
- Info: 0 out of 2 third-party GitHubAction dependencies pinned
- Info: 3 out of 4 npmCommand dependencies pinned
Reason
Found 5/22 approved changesets -- score normalized to 2
Reason
0 commit(s) and 2 issue activity found in the last 90 days -- score normalized to 1
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Warn: no topLevel permission defined: .github/workflows/ci.yml:1
- Warn: no topLevel permission defined: .github/workflows/prepublish.yml:1
- Info: no jobLevel write permissions found
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
security policy file not detected
Details
- Warn: no security policy file detected
- Warn: no security file to analyze
- Warn: no security file to analyze
- Warn: no security file to analyze
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
branch protection not enabled on development/release branches
Details
- Warn: branch protection not enabled for branch 'master'
Reason
SAST tool is not run on all commits -- score normalized to 0
Details
- Warn: 0 commits out of 16 are checked with a SAST tool
Reason
32 existing vulnerabilities detected
Details
- Warn: Project is vulnerable to: GHSA-wf5p-g6vw-rhxx
- Warn: Project is vulnerable to: GHSA-8hc4-vh64-cxmj
- Warn: Project is vulnerable to: GHSA-qwcr-r2fm-qrc7
- Warn: Project is vulnerable to: GHSA-grv7-fg5c-xmjg
- Warn: Project is vulnerable to: GHSA-pxg6-pf52-xh8x
- Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275
- Warn: Project is vulnerable to: GHSA-gxpj-cx7g-858c
- Warn: Project is vulnerable to: GHSA-9j49-mfvp-vmhm
- Warn: Project is vulnerable to: GHSA-h6ch-v84p-w6p9
- Warn: Project is vulnerable to: GHSA-qw6h-vgh9-j6wx
- Warn: Project is vulnerable to: GHSA-mhxj-85r3-2x55
- Warn: Project is vulnerable to: GHSA-78xj-cgh5-2h22
- Warn: Project is vulnerable to: GHSA-2p57-rm9w-gvfp
- Warn: Project is vulnerable to: GHSA-r8j5-h5cx-65gg
- Warn: Project is vulnerable to: GHSA-3wc5-fcw2-2329
- Warn: Project is vulnerable to: GHSA-64fm-8hw2-v72w
- Warn: Project is vulnerable to: GHSA-f98w-7cxr-ff2h
- Warn: Project is vulnerable to: GHSA-29mw-wpgm-hmr9
- Warn: Project is vulnerable to: GHSA-952p-6rrq-rcjv
- Warn: Project is vulnerable to: GHSA-4c7m-wxvm-r7gc / GHSA-pch5-whg9-qr2r
- Warn: Project is vulnerable to: GHSA-9wv6-86v2-598j
- Warn: Project is vulnerable to: GHSA-mf74-qq7w-6j7v
- Warn: Project is vulnerable to: GHSA-p8p7-x288-28g6
- Warn: Project is vulnerable to: GHSA-c2qf-rxjj-qqgw
- Warn: Project is vulnerable to: GHSA-m6fv-jmcg-4jfg
- Warn: Project is vulnerable to: GHSA-cm22-4g7w-348p
- Warn: Project is vulnerable to: GHSA-f5x3-32g6-xq36
- Warn: Project is vulnerable to: GHSA-72xf-g2v4-qvf3
- Warn: Project is vulnerable to: GHSA-w5p7-h5w8-2hfq
- Warn: Project is vulnerable to: GHSA-4vvj-4cpr-p986
- Warn: Project is vulnerable to: GHSA-3h5v-q93c-6h6q
- Warn: Project is vulnerable to: GHSA-6fc8-4gx4-v693
Score
3
/10
Last Scanned on 2024-11-18
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More