Is @hackmd/string safe to use?

@hackmd/string has no known vulnerabilities on the latest version (3.3.5). DepScope rates its health at 56/100 (high risk).

What is the latest version of @hackmd/string?

The latest version of @hackmd/string is 3.3.5, released 2025-11-28.

Does @hackmd/string have known vulnerabilities?

No known vulnerabilities on the latest version of @hackmd/string.

Is @hackmd/string deprecated?

No, @hackmd/string is actively maintained. Latest release: 3.3.5 (2025-11-28).

What are alternatives to @hackmd/string?

Popular alternatives to @hackmd/string in npm include: ansi-styles, debug, brace-expansion, strip-ansi, ms.

What license does @hackmd/string use?

@hackmd/string is licensed under MIT.

@hackmd/string

npmv3.3.5

string contains methods that aren't included in the vanilla JavaScript string such as escaping html, decoding html entities, stripping tags, etc.

License MITpermissive2 versions3 maintainers0 deps105 weekly dl

jprichardson/string.js

/ 100

Health

safe to use

@hackmd/[email protected] is safe to use (health: 56/100)

Health breakdown0 – 100

15/25

maintenance

3/20

popularity

25/25

security

9/15

maturity

4/15

community

Vulnerabilities

none known

Bundle & TypeScript

📦

Bundle Size

22.0 KBminified

8.0 KB gzipped

0 direct dependencies

side effectsscoped

🌟

TypeScript

0/10untyped

No type definitions available

Health History

Dependency Tree

License Audit

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/npm/@hackmd/string