
Security News
PodRocket Podcast: Inside the Recent npm Supply Chain Attacks
Socket CEO Feross Aboukhadijeh discusses the recent npm supply chain attacks on PodRocket, covering novel attack vectors and how developers can protect themselves.
@mocha/eslint-config-mocha
Advanced tools
ESLint config for mochajs projects
Does nothing remarkable with linting your tests! Intended for use by projects under the Mocha.js GitHub org.
As of this writing, this config is unused by any published project. Except this one, I guess.
Install with npm
$ npm i eslint eslint-config-standard eslint-plugin-import eslint-plugin-promise eslint-plugin-standard eslint-plugin-mocha-only eslint-config-mocha --save-dev
(About ESLint & peerDependencies
)
Assuming a JSON ESLint config, add the following to the root .eslintrc.json
:
{
"extends": "mocha"
}
If using ES6 modules, instead:
{
"extends": "mocha/es6"
}
In your test/.eslintrc.json
, try this:
{
"extends": "mocha/test"
}
Copyright (c) 2016 JS Foundation and contributors
Licensed Apache-2.0
FAQs
ESLint config for mochajs projects
The npm package @mocha/eslint-config-mocha receives a total of 1 weekly downloads. As such, @mocha/eslint-config-mocha popularity was classified as not popular.
We found that @mocha/eslint-config-mocha demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Socket CEO Feross Aboukhadijeh discusses the recent npm supply chain attacks on PodRocket, covering novel attack vectors and how developers can protect themselves.
Security News
Maintainers back GitHub’s npm security overhaul but raise concerns about CI/CD workflows, enterprise support, and token management.
Product
Socket Firewall is a free tool that blocks malicious packages at install time, giving developers proactive protection against rising supply chain attacks.