You're Invited:Meet the Socket Team at BlackHat and DEF CON in Las Vegas, Aug 7-8.RSVP
Sign inDemoInstall


Package Overview
File Explorer

Advanced tools

Install Socket

Detect and block malicious and high-risk dependencies



Standard ESLint configuration settings

Version published





Custom ESLint configuration for all projects. Includes flat-config formatted configurations compatible with ESLint v9+ for the following:

Plugin NameConfig filenameRule Prefix
eslint-plugin-sonarjssonarjs-config.jssonarjs, sonarjs2
eslint-plugin-unicornunicorn-configs.js, esm-config.jsunicorn

As flat configs, the package defines all required plugins/configurations as dependencies. Since flat config allows flexibility in the rule prefixes (that is, they don't have to match the plugin name), the rules prefixes are adapted in some cases to be more intuitive or readable. Since they may be combined, and flat config doesn't allow nested arrays of rules, file names that are singular export a single config object (for example jsdoc-config.js), and file names that are plural export an array of config objects (for example base-configs.js).

The sonarjs2 prefix has only one rule, sonarjs2/cognitive-complexity, that has a higher threshold. This provides a secondary check for cases where the lower threshold in the sonarjs/cognitive-complexity rule is disabled, which otherwise allows unbounded complexity.

Most rule configurations are applicable to files matching '**/*.{js,mjs,cjs}'. The following configurations are exceptions and are applicable to files as noted:

  • base-configs.js includes a config that disables some rules for test files matching any of the following test patterns (for example max-lines, max-lines-per-function).
  • jest-config applies rules to files matching '**/__tests__/**/*.{js,mjs,cjs}' or '**/?(*.)+(spec|test).{js,mjs,cjs}'.
  • vitest-config applies rules to files matching '**/__tests__/**/*.{js,mjs}' or '**/?(*.)+(spec|test).{js,mjs}'.
  • playwright-config: applies rules to files matching '**/*.pwtest.{js,mjs,cjs}', which differentiates them from Jest/Vitest test files.
  • unicorn-configs.js includes a config that disables some rules for test files (matching any of the following test patterns).

With ESLint v9 the majority of formatting rules are deprecated and removed from base-configs, but the eslint-config-prettier package is included and can be added to the config if prettier is also being used to ensure it takes priority for formatting.

There is also an esm-config included with rule overrides for projects using ES modules instead of Common JS modules.


There is a recommended configuration with all plugin configurations enabled except esm-config and vitest-config (it does include jest-config). To configure eslint.config.js with this configuration:

const recommendedConfig = require('@aarongoldenthal/eslint-config-standard/recommended');

module.exports = [
    ignores: ['.vscode/**', 'archive/**', 'node_modules/**', 'coverage/**'],
    name: 'ignores'

Note the optional ignores config that can be added last to ignore certain directories.

There is also a recommended-esm configuration that's the same as the recommended config, but includes the vitest-config instead of the jest-config, and also the esm-config. It can be configured with:

import recommendedConfig from '@aarongoldenthal/eslint-config-standard/recommended-esm.js';

export default [
    ignores: ['.vscode/**', 'archive/**', 'node_modules/**', 'coverage/**'],
    name: 'ignores'

To configure eslint.config.js with individual plugins, see the recommended or recommended-esm configurations as examples.


  • If used, the base-configs should be included after other configurations, except esm-config and prettier, so those settings take precedence.
  • The jest-config and vitest-config have the same file applicability, so only one should be used.
  • If used, the esm-config should be configured after all functional rules to ensure the overridden settings take precedence.
  • If used, the prettier config should be included last to take priority in disabling the applicable rules from all other configurations.



Package last updated on 12 Jul 2024

Did you know?


Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.


Related posts

SocketSocket SOC 2 Logo


  • Package Alerts
  • Integrations
  • Docs
  • Pricing
  • FAQ
  • Roadmap
  • Changelog


Stay in touch

Get open source security insights delivered straight into your inbox.

  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc