Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@gossi/config-eslint
Advanced tools
Add eslint to your packages. Based on [NullVoxPopuli/eslint-config](https://github.com/NullVoxPopuli/eslint-configs).
@gossi/config-eslint
Add eslint to your packages. Based on NullVoxPopuli/eslint-config.
This lint config meta package is setup to lazily detect which plugins and configurations you have installed and automatically add them to your lint config.
This has the following benefits:
pnpm add -D @gossi/config-eslint eslint
Create a .eslintrc.js
file with your desired config (see below)
{
"scripts": {
"lint:js": "eslint . --cache",
"lint:js:fix": "eslint . --fix"
}
}
Describe your project:
@babel/core
(bring your version)@babel/eslint-parser
@typescript-eslint/eslint-plugin
@typescript-eslint/parser
Zero config for these plugins, installing them is enough:
eslint-plugin-ember
eslint-plugin-qunit
eslint-plugin-storybook
Accommodates: JS, TS, App, and Addon
// .eslintrc.js
'use strict';
const { configs } = require('@gossi/config-eslint');
// accommodates: JS, TS, App, Addon, and V2 Addon
module.exports = configs.ember();
overriding:
// .eslintrc.js
'use strict';
const { configs } = require('@gossi/config-eslint');
const config = configs.ember();
module.exports = {
...config,
overrides: [
...config.overrides,
// your modifications here
// see: https://eslint.org/docs/user-guide/configuring/configuration-files#how-do-overrides-work
]
}
This config is ESM, as ESM is the most widely supported module format across different distributions (browser, node, etc).
// .eslintrc.cjs
'use strict';
const { configs } = require('@gossi/config-eslint');
// accommodates: JS, TS, ESM, and CJS
module.exports = configs.crossPlatform();
This config looks at your package.json to determine if your project is CommonJS or ES Modules.
// .eslintrc.js
'use strict';
const { configs } = require('@gossi/config-eslint');
// accommodates: JS, TS, ESM, and CJS
module.exports = configs.node();
overriding:
// .eslintrc.js
'use strict';
const { configs } = require('@gossi/config-eslint');
const config = configs.node();
module.exports = {
...config,
overrides: [
...config.overrides,
// your modifications here
// see: https://eslint.org/docs/user-guide/configuring/configuration-files#how-do-overrides-work
]
}
This config is for when *.js
is CommonJS, and ES Modules are used via the *.mjs
extension.
// .eslintrc.js
'use strict';
const { configs } = require('@gossi/config-eslint');
// accommodates: JS, TS, and CJS
module.exports = configs.nodeCJS();
This config is for when *.js
is ES Modules, and CommonJS are used via the *.cjs
extension.
// .eslintrc.js
'use strict';
const { configs } = require('@gossi/config-eslint');
// accommodates: JS, TS, and ESM
module.exports = configs.nodeESM();
To see what the resolved config looks like for a file
node_modules/.bin/eslint --print-config path/to/file
FAQs
Add eslint to your packages. Based on [NullVoxPopuli/eslint-config](https://github.com/NullVoxPopuli/eslint-configs).
The npm package @gossi/config-eslint receives a total of 620 weekly downloads. As such, @gossi/config-eslint popularity was classified as not popular.
We found that @gossi/config-eslint demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.