
Research
PyPI Package Disguised as Instagram Growth Tool Harvests User Credentials
A deceptive PyPI package posing as an Instagram growth tool collects user credentials and sends them to third-party bot services.
@compiled/eslint-plugin
Advanced tools
A familiar and performant compile time CSS-in-JS library for React.
This plugin contains rules that should be used when working with @compiled/react
.
npm install @compiled/eslint-plugin --save-dev
Import the @compiled/eslint-plugin
and add it to your plugins like so, then configure the rules you want to use under the "Supported rules" section.
import compiled from '@compiled/eslint-plugin';
export default [
{
plugins: {
'@compiled': compiled,
},
rules: {
'@compiled/no-js-xcss': 'error',
},
},
];
You can also enable the recommended rules for compiled by extending the flat/recommended
config like so:
import compiled from '@compiled/eslint-plugin';
export default [compiled.configs['flat/recommended']];
.eslintrc
)Add @compiled
to the plugins section of your .eslintrc
configuration file, then configure the rules you want to use under the rules section.
{
"plugins": ["@compiled"],
"rules": {
"@compiled/no-js-xcss": "error"
}
}
You can also enable the recommended rules for compiled by adding plugin:@compiled/recommended
in extends:
{
+ "extends": ["plugin:@compiled/recommended"],
- "plugins": ["@compiled"]
}
ā
Included in the recommended configuration.
š§ Automatically fixable by the --fix
CLI option.\
Name | Description | Recommended | Fixable |
---|---|---|---|
@compiled/jsx-pragma | Enforces a jsx pragma when using the css prop | š§ | |
@compiled/local-cx-xcss | Ensures the cx() function is only used within the xcss prop | ā | |
@compiled/no-css-prop-without-css-function | Disallows css prop usages where it is either not wrapped in the css import from @compiled/react or where @compiled cannot determine whether the css import is included at build time. | ā | š§ |
@compiled/no-css-tagged-template-expression | Disallows the css tagged template expression | ā | š§ |
@compiled/no-emotion-css | Disallows @emotion usages | š§ | |
@compiled/no-empty-styled-expression | Disallows any styled expression to be used when passing empty arguments in @compiled/react | ā | |
@compiled/no-exported-css | Disallows css usages from being exported | ā | |
@compiled/no-exported-keyframes | Disallows keyframes usages from being exported | ā | |
@compiled/no-invalid-css-map | Checks the validity of a CSS map created through cssMap. This is intended to be used alongside TypeScript's type-checking. | ā | |
@compiled/no-js-xcss | The xcss prop is predicated on adhering to the type contract. Using it without TypeScript breaks this contract and thus is not allowed. | ā | |
@compiled/no-keyframes-tagged-template-expression | Disallows the keyframes tagged template expression | ā | š§ |
@compiled/no-styled-tagged-template-expression | Disallows the styled tagged template expression | ā | š§ |
@compiled/no-suppress-xcss | The xcss prop is predicated on adhering to the type contract. Supressing it breaks this contract and thus is not allowed. | ā | |
@compiled/shorthand-property-sorting | Prevent unwanted side-effects by ensuring shorthand properties are always defined before their corresponding longhand properties. | ā |
FAQs
A familiar and performant compile time CSS-in-JS library for React.
The npm package @compiled/eslint-plugin receives a total of 123 weekly downloads. As such, @compiled/eslint-plugin popularity was classified as not popular.
We found that @compiled/eslint-plugin demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago.Ā It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
A deceptive PyPI package posing as an Instagram growth tool collects user credentials and sends them to third-party bot services.
Product
Socket now supports pylock.toml, enabling secure, reproducible Python builds with advanced scanning and full alignment with PEP 751's new standard.
Security News
Research
Socket uncovered two npm packages that register hidden HTTP endpoints to delete all files on command.