Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@contentful/eslint-config-backend
Advanced tools
ESLint rule-set according to our company code-style guidelines
You can find this repo on NPM and you should use NPM to install it. Only clone this repo if you want to contribute.
$ npm install --save-dev @contentful/eslint-config-backend@latest eslint@latest eslint-plugin-mocha@latest eslint-plugin-promise@latest eslint-plugin-standard@latest eslint-plugin-node@latest eslint-plugin-import@latest
Add the following files to your project:
.eslintrc.js
at your project rootmodule.exports = {
extends: '@contentful/backend'
};
test/.eslintrc.js
module.exports = {
env: {
mocha: true
},
globals: {
expect: true
}
};
You now have a locally installed eslint
in node_modules/.bin/
.
It can be run with ./node_modules/.bin/eslint
Pro Tip:
PATH=$PATH:./node_modules/.bin/
eslint
command in your project folder.Note that a globally installed eslint will not work because it won't find the config module. Also installing global modules is very unsafe.
You can run the linter with eslint -c .eslintrc.{yaml, json} <FILE OR FOLDER PATH>
Check ESLint documentation for more information.
Install the linter-eslint
plugin. It should work without any change in configuration.
IDE missing? Contributions are welcomed.
Note: This is optional and you should discuss it with the owner of the repo before enabling this hook.
Install the pre-commit NPM package: npm install --save-dev pre-commit
which sets up hooks automatically.
Update your package.json to include these changes:
"scripts": {
"lint-js": "LIST=`git diff-index --name-only HEAD | grep \\.js$`; if [ \"$LIST\" ]; then node node_modules/eslint/bin/eslint.js -c .eslintrc.yaml $LIST; fi"
},
"pre-commit": [
"lint-js"
],
ESLint should now run before every commit and automatically lint .js
files.
Rules are based on a combination of StandardJS and this ES6 addition.
Our rules are slightly different in the following points:
const foo, bar
)n++
or n+=1
should be used. Use n = n + 1
instead. For loops are the exception, so for (let i = 0; i < 10; i++)
is still allowed.else / elseif
must be placed after the previous closing bracket on the same line.FAQs
ESLint rule-set according to our company code-style guidelines
The npm package @contentful/eslint-config-backend receives a total of 238 weekly downloads. As such, @contentful/eslint-config-backend popularity was classified as not popular.
We found that @contentful/eslint-config-backend demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.