npmpackage.info

Gathering detailed insights and metrics for scss-tokenizer

Other packages similar to scss-tokenizer

tacnoman-scss-tokenizer

0.3.1

A tokenzier for Sass' SCSS syntax

@lfranklin/scss-tokenizer

0.2.5

A tokenzier for Sass' SCSS syntax

design-tokenizer

0.4.5

A tool for working with W3C Design Token JSON files.

postcss-color-tokenizer

0.0.2

PostCSS plugin to convert css colours into variables for SCSS

Gathering detailed insights and metrics for scss-tokenizer

scss-tokenizer - 0.4.3 | npmpackage.info

scss-tokenizer

A tokenzier for Sass' SCSS syntax

0.4.3

MIT

JavaScript

13.37 kB

1,111,707,282 1.9

Installations

npm install scss-tokenizer

Developer Guide

BETA

Typescript

No

Module System

CommonJS

Node Version

16.13.1

NPM Version

8.1.2 Score

98.8

Supply Chain

83.4

Quality

75.9

Maintenance

100

Vulnerability

100

License

Pull Requests

Open

18

Total

41

Closed

8

Merged

15

Issues

Open

5

Total

16

Closed

11

Releases

v0.4.3

Updated on Aug 10, 2022

v0.4.2

Updated on Dec 03, 2018

v0.4.1

Updated on Dec 03, 2018

v0.4.0

Updated on Dec 03, 2018

v0.3.0

Updated on Apr 16, 2018

Fix broken release

v0.2.3

Updated on May 12, 2017

View All 11 releases

Languages

JavaScript

SCSS

JavaScript (99.43%)

SCSS (0.57%)

Developer

sasstools

Download Statistics

Total Downloads

1,111,707,282

Last Day

223,997

Last Week

1,152,170

Last Month

4,891,691

Last Year

70,028,253

GitHub Statistics

MIT License

24 Stars

63 Commits

22 Forks

6 Watchers

18 Branches

9 Contributors

Updated on May 17, 2024

Bundle Size

45.01 kB

Minified

13.37 kB

Minified + Gzipped

Bundlephobia

Maintainers

View All 9 Contributors

Package Meta Information

Latest Version

0.4.3

Package Id

scss-tokenizer@0.4.3

Unpacked Size

39.08 kB

Size

5.95 kB

File Count

NPM Version

8.1.2

Node Version

16.13.1

Total Downloads

Cumulative downloads

Total Downloads

1,111,707,282

Last Day

3.2%

223,997

Compared to previous day

Last Week

14.7%

1,152,170

Compared to previous week

Last Month

-0.8%

4,891,691

Compared to previous month

Last Year

-29.3%

70,028,253

Compared to previous year

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

js-base64 source-map

Dev Dependencies

babel-cli babel-core babel-jest babel-preset-env glob jest sass-spec

scss-tokenizer

A tokenizer for Sass' SCSS syntax

Install

npm install scss-tokenizer

Usage

1var scss = require('scss-tokenizer');
2scss.tokenize(css);

API

`tokenize`

Tokenizes source css and returns an ordered array of tokens with positional data.

1var tokenizer = require('scss-tokenizer');
2var tokens = tokenize.tokenize(css);

Arguments:

css (string|#toString): String with input CSS or any object with toString() method, like file stream.
opts (object) optional: options:
- from: the path to the source CSS file. You should always set from, because it is used in map generation and in syntax error messages.

Test

npm test

Attribution

This project started as a fork of the PostCSS tokenizer.

High

7.5/10

Summary

Regular expression denial of service in scss-tokenizer

Affected Versions

<= 0.4.2

Patched Versions

0.4.3

10

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

10

License

Determines if the project has defined a license.

1

Code-Review

Determines if the project requires human code review before pull requests (aka merge requests) are merged.

0

Maintained

Determines if the project is "actively maintained".

0

CII-Best-Practices

Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.

0

Security-Policy

Determines if the project has published a security policy.

0

Fuzzing

Determines if the project uses fuzzing.

0

Branch-Protection

Determines if the default and release branches are protected with GitHub's branch protection settings.

0

SAST

Determines if the project uses static code analysis.

0

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

Reason

63 existing vulnerabilities detected

Details

Warn: Project is vulnerable to: GHSA-v88g-cgmw-v5xw
Warn: Project is vulnerable to: GHSA-93q8-gq69-wqmw
Warn: Project is vulnerable to: GHSA-fwr7-v2mv-hh25
Warn: Project is vulnerable to: GHSA-67hx-6x53-jw92
Warn: Project is vulnerable to: GHSA-cwfw-4gq5-mrqx
Warn: Project is vulnerable to: GHSA-g95f-p29q-9xw4
Warn: Project is vulnerable to: GHSA-grv7-fg5c-xmjg
Warn: Project is vulnerable to: GHSA-c6rq-rjc2-86v2
Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275
Warn: Project is vulnerable to: GHSA-gxpj-cx7g-858c
Warn: Project is vulnerable to: GHSA-w573-4hg7-7wgq
Warn: Project is vulnerable to: GHSA-8r6j-v8pm-fqw3
Warn: Project is vulnerable to: MAL-2023-462
Warn: Project is vulnerable to: GHSA-q42p-pg8m-cqh6
Warn: Project is vulnerable to: GHSA-w457-6q6x-cgp9
Warn: Project is vulnerable to: GHSA-62gr-4qp9-h98f
Warn: Project is vulnerable to: GHSA-f52g-6jhx-586p
Warn: Project is vulnerable to: GHSA-2cf5-4w76-r9qv
Warn: Project is vulnerable to: GHSA-3cqr-58rm-57f8
Warn: Project is vulnerable to: GHSA-g9r4-xpmj-mj65
Warn: Project is vulnerable to: GHSA-q2c6-c6pm-g3gh
Warn: Project is vulnerable to: GHSA-765h-qjxv-5f44
Warn: Project is vulnerable to: GHSA-f2jv-r9rf-7988
Warn: Project is vulnerable to: GHSA-43f8-2h32-f4cj
Warn: Project is vulnerable to: GHSA-qqgx-2p2h-9c37
Warn: Project is vulnerable to: GHSA-2pr6-76vf-7546
Warn: Project is vulnerable to: GHSA-8j8c-7jfh-h6hx
Warn: Project is vulnerable to: GHSA-896r-f27r-55mw
Warn: Project is vulnerable to: GHSA-9c47-m6qq-7p4h
Warn: Project is vulnerable to: GHSA-6c8f-qphg-qjgp
Warn: Project is vulnerable to: GHSA-jf85-cpcp-j695
Warn: Project is vulnerable to: GHSA-p6mc-m468-83gw
Warn: Project is vulnerable to: GHSA-29mw-wpgm-hmr9
Warn: Project is vulnerable to: GHSA-35jh-r3h4-6jhm
Warn: Project is vulnerable to: GHSA-4xc9-xhrj-v574
Warn: Project is vulnerable to: GHSA-x5rq-j2xg-h7qm
Warn: Project is vulnerable to: GHSA-4xcv-9jjx-gfj3
Warn: Project is vulnerable to: GHSA-7wpw-2hjm-89gp
Warn: Project is vulnerable to: GHSA-952p-6rrq-rcjv
Warn: Project is vulnerable to: GHSA-f8q6-p94x-37v3
Warn: Project is vulnerable to: GHSA-vh95-rmgr-6w4m
Warn: Project is vulnerable to: GHSA-xvch-5gv4-984h
Warn: Project is vulnerable to: GHSA-fhjf-83wg-r2j9
Warn: Project is vulnerable to: GHSA-5fw9-fq32-wv5p
Warn: Project is vulnerable to: GHSA-hj48-42vr-x3v9
Warn: Project is vulnerable to: GHSA-hrpp-h998-j3pp
Warn: Project is vulnerable to: GHSA-p8p7-x288-28g6
Warn: Project is vulnerable to: GHSA-c2qf-rxjj-qqgw
Warn: Project is vulnerable to: GHSA-4g88-fppr-53pp
Warn: Project is vulnerable to: GHSA-4jqc-8m5r-9rpr
Warn: Project is vulnerable to: GHSA-j44m-qm6p-hp7m
Warn: Project is vulnerable to: GHSA-3jfq-g458-7qm9
Warn: Project is vulnerable to: GHSA-r628-mhmh-qjhw
Warn: Project is vulnerable to: GHSA-9r2w-394v-53qc
Warn: Project is vulnerable to: GHSA-5955-9wpr-37jh
Warn: Project is vulnerable to: GHSA-qq89-hq3f-393p
Warn: Project is vulnerable to: GHSA-f5x3-32g6-xq36
Warn: Project is vulnerable to: GHSA-jgrx-mgxx-jf9v
Warn: Project is vulnerable to: GHSA-72xf-g2v4-qvf3
Warn: Project is vulnerable to: GHSA-6fc8-4gx4-v693
Warn: Project is vulnerable to: GHSA-3h5v-q93c-6h6q
Warn: Project is vulnerable to: GHSA-c4w7-xm78-47vh
Warn: Project is vulnerable to: GHSA-p9pc-299p-vxgp

Score

1.9

/10

Last Scanned on 2025-05-05

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.

Learn More