Research
Security News
Malicious npm Package Typosquats react-login-page to Deploy Keylogger
Socket researchers unpack a typosquatting package with malicious code that logs keystrokes and exfiltrates sensitive data to a remote server.
@amedia/eslint-config-base
Advanced tools
Readme
Common ESLint/Prettier configuration for javascript Extends AirBnb's Base configuration: https://github.com/airbnb/javascript/tree/master/packages/eslint-config-airbnb-base
To test this package:
Install the package with (change the version to the version in package.json)
With npm 5+
This is a cool tool that installs all dependencies you need in devDependencies
to get going.
npx install-peerdeps --dev @amedia/eslint-config-base
OR
If you want a prefer manual approach then install the correct versions of each peerDependency package, which are listed by the command:
npm info "@amedia/eslint-config-base" peerDependencies
npm install --save-dev @amedia/eslint-config-base
yarn add @amedia/eslint-config-base -D
Install the correct versions of each peerDependency package, which are listed by the command:
npm info "@amedia/eslint-config-base" peerDependencies
There are a few ways to include the eslint config in your project.
Make sure you dont have any other settings for eslint or prettier already in your editor workspace or global. Restart your editor if you dont see it working immediately (known issue for VS Code)
Select one of the options below:
Using your package.json
:
{
"eslintConfig": {
"extends": "@amedia/eslint-config-base"
}
}
Using your .eslintrc
:
{
"extends": "@amedia/eslint-config-base"
}
or .eslintrc.js
:
module.exports = {
extends: '@amedia/eslint-config-base',
};
eslint and prettier may need a punch in the gut for these changes to take effect. Restart your editor.
This is how you use or extend the @amedia/eslint-config-base
prettier config in your
app. Add a line to the package.json
file.
{
"prettier": "@amedia/eslint-config-base/prettier.config"
}
Create a file named prettier.config.js
Again, remove other prettier config files locally in your project or editor.
module.exports = require('@amedia/eslint-config-base/prettier.config');
Install extenstion for VS Code ESLint extension (Dirk Baumer) (https://marketplace.visualstudio.com/items?itemName=dbaeumer.vscode-eslint) and Prettier - Code formatter (https://marketplace.visualstudio.com/items?itemName=esbenp.prettier-vscode)
create a folder .vscode
, and a file settings.json
with the following:
{
"editor.defaultFormatter": "esbenp.prettier-vscode",
"editor.formatOnSave": true,
"[yaml]": {
"editor.formatOnSave": false
},
"[javascript]": {
"editor.detectIndentation": true
},
"editor.codeActionsOnSave": {
"source.fixAll.eslint": true
}
}
You might want to add these two scripts in you package.json
.
"scripts": {
"lint": "eslint bin lib",
"lint-fix": "eslint --fix bin lib"
},
Here is an example of how you could customize for your project :
An example of .eslintrc.js
const eslintAmedia = require('@amedia/eslint-config-base');
delete eslintAmedia.parser;
eslintAmedia.rules['import/extensions'] = 1;
eslintAmedia.parserOptions.ecmaVersion = 2020;
module.exports = eslintAmedia;
FAQs
Unknown package
The npm package @amedia/eslint-config-base receives a total of 1,096 weekly downloads. As such, @amedia/eslint-config-base popularity was classified as popular.
We found that @amedia/eslint-config-base demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 68 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers unpack a typosquatting package with malicious code that logs keystrokes and exfiltrates sensitive data to a remote server.
Security News
The JavaScript community has launched the e18e initiative to improve ecosystem performance by cleaning up dependency trees, speeding up critical parts of the ecosystem, and documenting lighter alternatives to established tools.
Product
Socket now supports four distinct alert actions instead of the previous two, and alert triaging allows users to override the actions taken for all individual alerts.