Research
Two Malicious Rust Crates Impersonate Popular Logger to Steal Wallet Keys
Socket uncovers malicious Rust crates impersonating fast_log to steal Solana and Ethereum wallet keys from source code.
By Kirill Boychenko - Sep 24, 2025
@unic/estatico-stylelint
Advanced tools
@unic/estatico-stylelint
Uses Stylelint to lint (and optionally auto-fix files)
Installation
$ npm install --save-dev @unic/estatico-stylelint
Usage
const gulp = require('gulp');
const env = require('minimist')(process.argv.slice(2));
/**
* CSS linting task
* Uses Stylelint to lint (and optionally auto-fix files)
*
* Using `--watch` (or manually setting `env` to `{ watch: true }`) starts file watcher
* When combined with `--skipBuild`, the task will not run immediately but only after changes
* Adding `--fix` will auto-fix issues and save the files back to the file system
*/
gulp.task('css:lint', () => {
const task = require('@unic/estatico-stylelint');
const instance = task({
src: [
'./src/**/*.scss',
],
srcBase: './src/',
dest: './dist',
watch: {
src: [
'./src/**/*.scss',
],
name: 'css:lint',
},
}, env);
// Don't immediately run task when skipping build
if (env.watch && env.skipBuild) {
return instance;
}
return instance();
});
Run task (assuming the project's package.json specifies "scripts": { "gulp": "gulp" }):
$ npm run gulp css:lint
See possible flags specified above.
API
plugin(options, env) => taskFn
options
src (required)
Type: Array or String
Default: null
Passed to gulp.src.
srcBase (required)
Type: String
Default: null
Passed as base option to gulp.src.
dest
Type: String
Default: null
Passed to gulp.dest when chosing to write back to dics (not yet implemented).
watch
Type: Object
Default: null
Passed to file watcher when --watch is used.
plugins
Type: Object
plugins.stylelint
Type: Object
Default:
{
failAfterError: true,
reporters: [
{
formatter: 'string',
console: true,
},
],
}
Passed to gulp-stylelint.
logger
Type: { info: Function, debug: Function, error: Function }
Default: Instance of estatico-utils's Logger utility.
Set of logger utility functions used within the task.
env
Type: Object
Default: {}
Result from parsing CLI arguments via minimist, e.g. { dev: true, watch: true }. Some defaults are affected by this, see above.
License
Apache 2.0.
FAQs
Uses Stylelint to lint (and optionally auto-fix files)
We found that @unic/estatico-stylelint demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 3 open source maintainers collaborating on the project.
Package last updated on 19 Sep 2018
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
Malicious fezbox npm Package Steals Browser Passwords from Cookies via Innovative QR Code Steganographic Technique
A malicious package uses a QR code as steganography in an innovative technique.
By Olivia Brown - Sep 22, 2025
Research
/Security News
Identifying and Preventing Fraudulent Engineering Candidates: An Investigation into 80 Confirmed Cases
Socket identified 80 fake candidates targeting engineering roles, including suspected North Korean operators, exposing the new reality of hiring as a security function.
By Lauren Valencia, Kirill Boychenko - Sep 17, 2025