Security News
Another Round of TEA Protocol Spam Floods npm, But It’s Not a Worm
Recent coverage mislabels the latest TEA protocol spam as a worm. Here’s what’s actually happening.
By Philipp Burckhardt - Nov 14, 2025
@rushstack/eslint-bulk
Advanced tools
@rushstack/eslint-bulk
Roll out new ESLint rules in a large monorepo without cluttering up your code with "eslint-ignore-next-line"
@rushstack/eslint-bulk
This package provides the command-line interface (CLI) for the ESLint bulk suppressions
feature from @rushstack/eslint-patch.
Setting it up
👉 Before using this tool, you will first need to install and configure the @rushstack/eslint-patch package.
See the eslint-bulk-suppressions documentation for details.
Typical workflow
- Checkout your
mainbranch, which is in a clean state where ESLint reports no violations. - Update your configuration to enable the latest lint rules; ESLint now reports thousands of legacy violations.
- Run
eslint-bulk suppress --all ./srcto update .eslint-bulk-suppressions.json. - ESLint now no longer reports violations, so commit the results to Git and merge your pull request.
- Over time, engineers may improve some of the suppressed code, in which case the associated suppressions are no longer needed.
- Run
eslint-bulk pruneperiodically to find and remove unnecessary suppressions from .eslint-bulk-suppressions.json, ensuring that new violations will now get caught in those scopes.
"eslint-bulk suppress" command
eslint-bulk suppress --rule NAME1 [--rule NAME2...] PATH1 [PATH2...]
eslint-bulk suppress --all PATH1 [PATH2...]
Use this command to automatically generate bulk suppressions for the specified lint rules and file paths.
The path argument is a glob pattern with the same syntax
as path arguments for the eslint command.
"eslint-bulk prune" command
Use this command to automatically delete all unnecessary suppression entries in all .eslint-bulk-suppressions.json files under the current working directory.
eslint-bulk prune
Links
-
CHANGELOG.md - Find out what's new in the latest version
-
@rushstack/eslint-patchrequired companion package
@rushstack/eslint-bulk is part of the Rush Stack family of projects.
FAQs
Roll out new ESLint rules in a large monorepo without cluttering up your code with "eslint-ignore-next-line"
The npm package @rushstack/eslint-bulk receives a total of 4,606 weekly downloads. As such, @rushstack/eslint-bulk popularity was classified as popular.
We found that @rushstack/eslint-bulk demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 3 open source maintainers collaborating on the project.
Package last updated on 09 Apr 2025
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
PyPI Expands Trusted Publishing to GitLab Self-Managed as Adoption Passes 25 Percent
PyPI adds Trusted Publishing support for GitLab Self-Managed as adoption reaches 25% of uploads
By Sarah Gooding - Nov 14, 2025
Research
/Security News
Malicious Chrome Extension Exfiltrates Seed Phrases, Enabling Wallet Takeover
A malicious Chrome extension posing as an Ethereum wallet steals seed phrases by encoding them into Sui transactions, enabling full wallet takeover.
By Kirill Boychenko - Nov 12, 2025