Is @hackmd/string safe to use?

@hackmd/string has no known vulnerabilities on the latest version (3.3.5). DepScope rates its health at 53/100 (high risk).

What is the latest version of @hackmd/string?

The latest version of @hackmd/string is 3.3.5, released 2025-11-28.

Does @hackmd/string have known vulnerabilities?

No known vulnerabilities on the latest version of @hackmd/string.

Is @hackmd/string deprecated?

No, @hackmd/string is actively maintained. Latest release: 3.3.5 (2025-11-28).

What are alternatives to @hackmd/string?

Popular alternatives to @hackmd/string in npm include: semver, debug, minimatch, strip-ansi, ms.

What license does @hackmd/string use?

@hackmd/string is licensed under MIT.

@hackmd/string

npmv3.3.5

string contains methods that aren't included in the vanilla JavaScript string such as escaping html, decoding html entities, stripping tags, etc.

License MITpermissive2 versions3 maintainers0 deps

jprichardson/string.js

/ 100

Health

safe to use

@hackmd/[email protected] is safe to use (health: 53/100)

Health breakdown0 – 100

10/25

maintenance

0/20

popularity

25/25

security

9/15

maturity

9/15

community

Vulnerabilities

none known

Bundle & TypeScript

📦

Bundle Size

22.0 KBminified

8.0 KB gzipped

0 direct dependencies

side effectsscoped

🌟

TypeScript

0/10untyped

No type definitions available

Health History

Dependency Tree

License Audit

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/npm/@hackmd/string