@microsoft/eslint-formatter-sarif
Advanced tools
Readme
eslint-formatter-sarif is a formatter for ESLint that produces output in the SARIF (Static Analysis Results Interchange Format) v2.1.0 format.
It is available as an npm module @microsoft/eslint-formatter-sarif.
To install ESLint, follow the instructions at Getting Started with ESLint.
To install the ESLint SARIF formatter:
npm install @microsoft/eslint-formatter-sarif --save-dev
To run ESLint with the SARIF formatter:
./node-modules/.bin/eslint -f @microsoft/eslint-formatter-sarif -o yourfile.sarif yourfile.js
Note that you cannot use the abbreviated form -f sarif, because that only works when the npm module name is of the form eslint-formatter-example, and the ESLint SARIF formatter module is not eslint-formatter-sarif; it's @microsoft/eslint-formatter-sarif. Alternatively, you can use the form -f @microsoft/sarif.
To embed the contents of the analyzed source files in the resulting SARIF file:
set SARIF_ESLINT_EMBED=true
To disable content embedding:
set SARIF_ESLINT_EMBED=
To run unit tests:
RunTests.cmd
FAQs
ESLint formatter for the SARIF (Static Analysis Results Interchange Format) v2.1.0 file format
The npm package @microsoft/eslint-formatter-sarif receives a total of 222,605 weekly downloads. As such, @microsoft/eslint-formatter-sarif popularity was classified as popular.
We found that @microsoft/eslint-formatter-sarif demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 5 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
UnitedHealth Group disclosed that the ransomware attack on Change Healthcare compromised protected health information for millions in the U.S., with estimated costs to the company expected to reach $1 billion.
Security News
GitHub is susceptible to a CDN flaw that allows attackers to host malware on any public repository.
Security News
At Node Congress, Socket CEO Feross Aboukhadijeh uncovers the darker aspects of open source, where applications that rely heavily on third-party dependencies can be exploited in supply chain attacks.