Is @lezer/highlight safe to use?

@lezer/highlight has no known vulnerabilities on the latest version (1.2.3). DepScope rates its health at 46/100 (high risk).

What is the latest version of @lezer/highlight?

The latest version of @lezer/highlight is 1.2.3, released 2025-10-26.

No known vulnerabilities on the latest version of @lezer/highlight.

No, @lezer/highlight is actively maintained. Latest release: 1.2.3 (2025-10-26).

Popular alternatives to @lezer/highlight in npm include: minimatch, commander, eslint-visitor-keys, ajv, color-name.

@lezer/highlight is licensed under MIT.

npmv1.2.3

Highlighting system for Lezer parse trees

License MITpermissive13 versions1 maintainers1 deps

/ 100

Health

safe to use

@lezer/[email protected] is safe to use (health: 46/100)

Health breakdown0 – 100

10/25

maintenance

0/20

popularity

25/25

security

9/15

maturity

2/15

community

Vulnerabilities

none known

🌟

10/10typed

bundled

Quality signals

Publish security

npm signed

Dependencies (1)

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/npm/@lezer/highlight