Gathering detailed insights and metrics for remark-mdx-frontmatter
Gathering detailed insights and metrics for remark-mdx-frontmatter
A remark plugin for converting frontmatter metadata into MDX exports
Installations
npm install remark-mdx-frontmatterDeveloper Guide
BETA
Typescript
Yes
Module System
ESM
Node Version
24.1.0
NPM Version
11.3.0
Score
97.9
Supply Chain
98.2
Quality
82.3
Maintenance
100
Vulnerability
100
License
Releases
15
Languages
2
JavaScript
TypeScript
JavaScript (65.57%)
TypeScript (34.43%)
Developer
remcohaszing
Download Statistics
Total Downloads
45,522,838
Last Day
23,175
Last Week
479,636
Last Month
2,042,436
Last Year
22,211,985
GitHub Statistics
MIT License
127 Stars
106 Commits
7 Forks
3 Watchers
1 Branches
2 Contributors
Updated on Jun 26, 2025
Bundle Size
138.64 kB
Minified
38.97 kB
Minified + Gzipped
Sponsor this package
Maintainers
1
Package Meta Information
Latest Version
5.2.0
Package Id
remark-mdx-frontmatter@5.2.0
Unpacked Size
13.55 kB
Size
4.44 kB
File Count
13
NPM Version
11.3.0
Node Version
24.1.0
Published on
Jun 04, 2025
Total Downloads
Cumulative downloads
Total Downloads
45,522,838
Last Day
-14.7%
23,175
Compared to previous day
Last Week
-7.3%
479,636
Compared to previous week
Last Month
0.4%
2,042,436
Compared to previous month
Last Year
43.3%
22,211,985
Compared to previous year
Weekly Downloads
Monthly Downloads
Yearly Downloads
remark-mdx-frontmatter
A remark plugin for converting frontmatter metadata into MDX exports
Table of Contents
Installation
This package depends on the AST output by remark-frontmatter
1npm install remark-frontmatter remark-mdx-frontmatter
Usage
This remark plugin takes frontmatter content, and outputs it as JavaScript exports. Both YAML and TOML frontmatter data are supported.
For example, given a file named example.mdx with the following contents:
1--- 2hello: frontmatter 3--- 4 5Rest of document
The following script:
1import { readFile } from 'node:fs/promises' 2 3import { compile } from '@mdx-js/mdx' 4import remarkFrontmatter from 'remark-frontmatter' 5import remarkMdxFrontmatter from 'remark-mdx-frontmatter' 6 7const { value } = await compile(await readFile('example.mdx'), { 8 jsx: true, 9 remarkPlugins: [remarkFrontmatter, remarkMdxFrontmatter] 10}) 11console.log(value)
Roughly yields:
1export const frontmatter = { 2 hello: 'frontmatter' 3} 4 5export default function MDXContent() { 6 return <p>Rest of document</p> 7}
API
The default export is a remark plugin.
Options
default: The default value to export if no frontmatter data is found. (Default:undefined).name: The identifier name of the variable the frontmatter data is assigned to. (Default:frontmatter).parsers: A mapping A mapping of node types to parsers. Each key represents a frontmatter node type. The value is a function that accepts the frontmatter data as a string, and returns the parsed data. By defaultyamlnodes will be parsed usingyamlandtomlnodes usingtoml.
In addition it supports unist-util-mdx-define
options.
Compatibility
This project is compatible with Node.js 18 or greater.
License
No vulnerabilities found.
Reason
no dangerous workflow patterns detected
Reason
15 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10
Reason
no binaries found in the repo
Reason
license file detected
Details
- Info: project has a license file: LICENSE.md:0
- Info: FSF or OSI recognized license: MIT License: LICENSE.md:0
Reason
security policy file detected
Details
- Info: security policy file detected: github.com/remcohaszing/.github/SECURITY.md:1
- Info: Found linked content: github.com/remcohaszing/.github/SECURITY.md:1
- Info: Found disclosure, vulnerability, and/or timelines in security policy: github.com/remcohaszing/.github/SECURITY.md:1
- Info: Found text in security policy: github.com/remcohaszing/.github/SECURITY.md:1
Reason
packaging workflow detected
Details
- Info: Project packages its releases by way of GitHub Actions.: .github/workflows/ci.yaml:75
Reason
1 existing vulnerabilities detected
Details
- Warn: Project is vulnerable to: GHSA-v6h2-p8h4-qcjw
Reason
dependency not pinned by hash detected -- score normalized to 5
Details
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yaml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/remcohaszing/remark-mdx-frontmatter/ci.yaml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yaml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/remcohaszing/remark-mdx-frontmatter/ci.yaml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yaml:47: update your workflow using https://app.stepsecurity.io/secureworkflow/remcohaszing/remark-mdx-frontmatter/ci.yaml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yaml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/remcohaszing/remark-mdx-frontmatter/ci.yaml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yaml:64: update your workflow using https://app.stepsecurity.io/secureworkflow/remcohaszing/remark-mdx-frontmatter/ci.yaml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yaml:65: update your workflow using https://app.stepsecurity.io/secureworkflow/remcohaszing/remark-mdx-frontmatter/ci.yaml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yaml:70: update your workflow using https://app.stepsecurity.io/secureworkflow/remcohaszing/remark-mdx-frontmatter/ci.yaml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yaml:72: update your workflow using https://app.stepsecurity.io/secureworkflow/remcohaszing/remark-mdx-frontmatter/ci.yaml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yaml:87: update your workflow using https://app.stepsecurity.io/secureworkflow/remcohaszing/remark-mdx-frontmatter/ci.yaml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yaml:91: update your workflow using https://app.stepsecurity.io/secureworkflow/remcohaszing/remark-mdx-frontmatter/ci.yaml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yaml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/remcohaszing/remark-mdx-frontmatter/ci.yaml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yaml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/remcohaszing/remark-mdx-frontmatter/ci.yaml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yaml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/remcohaszing/remark-mdx-frontmatter/ci.yaml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yaml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/remcohaszing/remark-mdx-frontmatter/ci.yaml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yaml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/remcohaszing/remark-mdx-frontmatter/ci.yaml/main?enable=pin
- Info: 0 out of 13 GitHub-owned GitHubAction dependencies pinned
- Info: 0 out of 2 third-party GitHubAction dependencies pinned
- Info: 5 out of 5 npmCommand dependencies pinned
Reason
Found 0/30 approved changesets -- score normalized to 0
Reason
no SAST tool detected
Details
- Warn: no pull requests merged into dev branch
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Warn: no topLevel permission defined: .github/workflows/ci.yaml:1
- Info: no jobLevel write permissions found
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
branch protection not enabled on development/release branches
Details
- Warn: branch protection not enabled for branch 'main'
Score
5.5
/10
Last Scanned on 2025-06-23
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More