Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@contentful/eslint-config-backend
Advanced tools
ESLint rule-set according to our company code-style guidelines
npm install -D -E @contentful/eslint-config-backend eslint
Add eslint.config.js
at your project root:
import contentfulBackend from "@contentful/eslint-config-backend";
export default [
contentfulBackend,
// add your project specific rules here
{
rules: {
"no-unused-vars": "warn",
},
},
];
The config applies the recommended @eslint/js
rules. It adds the following plugins and applies their recommended rules:
eslint-plugin-mocha
eslint-plugin-promise
For eslint-plugin-unicorn
, only the unicorn/filename-case
rule is applied.
Some rules are overriden, see src/index.ts for details.
The eslint-config-prettier
is applied at the end and disables all eslint rules that conflict with prettier.
FAQs
ESLint rule-set according to our company code-style guidelines
The npm package @contentful/eslint-config-backend receives a total of 238 weekly downloads. As such, @contentful/eslint-config-backend popularity was classified as not popular.
We found that @contentful/eslint-config-backend demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.