Security News
tea.xyz Spam Plagues npm and RubyGems Package Registries
Tea.xyz, a crypto project aimed at rewarding open source contributions, is once again facing backlash due to an influx of spam packages flooding public package registries.
@moneytree/tslint-rules
Advanced tools
Readme
TSLint configuration that covers both safety and code-style, as used by Moneytree.
In your project, install this configuration:
npm install --save-dev @moneytree/tslint-rules
or
yarn add --dev @moneytree/tslint-rules
Choose a configuration to use in your project (or a folder somewhere inside your project). Available options:
typescript
: Recommended base TypeScript configuration.react
: Extends typescript
to specialize for React.Now refer to that configuration in your own TSLint configuration file, by extending from it:
YAML:
extends:
- @moneytree/tslint-rules
JSON:
{
"extends": ["@moneytree/tslint-rules"]
}
Add "/react" for React projects
If you find that your project needs slightly different rules, or if you introduce this configuration into an existing project that may break too many rules, you can override the configuration. Especially in the latter case, we would suggest leaving the rule in place, but turning it into a warning instead, so that you can gradually update your code base and in the future turn that rule into an error again.
All rules are defined as an object with two value: severity
and options
.
The severity is the level at which you want to apply the rule:
The options will depends on the rule you want to change. Since we are using several ruleset you better us Google.
To change a rule, simply rewrite the rule in your own configuration file, and adjust the level as you wish.
rules:
<rule-name>:
severity: error
options:
really: true
Depending on additional libraries you use, like testing frameworks, there may be some very interesting TSLint ruleset for your project that you may want to add to your configuration.
We attempt to keep the rules compatible and complete with regards to the latest version of TSLint. Sometimes we will inevitably fall behind a little. If you want to know which versions of TSLint we cover, please refer to the version of the TSLint peer-dependency in package.json.
We try to be semver-ish in how we version this project. To create a version-bump commit, simply
run npm version patch
, npm version minor
or npm version major
.
patch should get bumped when:
react
in the example above).minor should get bumped when:
tslint
peer-dependency's minimal version is raised (which is usually when rules are added).major should get bumped when:
MIT
FAQs
A TSLint config for Moneytree
The npm package @moneytree/tslint-rules receives a total of 3 weekly downloads. As such, @moneytree/tslint-rules popularity was classified as not popular.
We found that @moneytree/tslint-rules demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Tea.xyz, a crypto project aimed at rewarding open source contributions, is once again facing backlash due to an influx of spam packages flooding public package registries.
Security News
As cyber threats become more autonomous, AI-powered defenses are crucial for businesses to stay ahead of attackers who can exploit software vulnerabilities at scale.
Security News
UnitedHealth Group disclosed that the ransomware attack on Change Healthcare compromised protected health information for millions in the U.S., with estimated costs to the company expected to reach $1 billion.