Security News
PyPI’s New Archival Feature Closes a Major Security Gap
PyPI now allows maintainers to archive projects, improving security and helping users make informed decisions about their dependencies.
babel-jscs
Advanced tools
**babel-jscs** allows you to lint **ALL** valid Babel code with [JSCS](https://github.com/jscs-dev/node-jscs). Big thanks to @sebmck!
babel-jscs allows you to lint ALL valid Babel code with JSCS. Big thanks to @sebmck!
This package will be used in jscs itself. The recommended way to use it is to use use the
esnext
option.
Usage:
jscs . --esnext
or add"esnext": true
to your.jscsrc
Also check out the fantastic babel-eslint to lint using ESLint.
NOTE: Please note that this is experimental and may have numerous bugs. It has been run against ember.js
and babel-core
with no errors (at the moment).
If there's an issue, first check if you can reproduce with the regular parser (esprima) and the latest version of jscs and babel-jscs.
Include: jscs
and babel-jscs
version, code snippet/screenshot
--verbose
mode to get the rule name(s) that have issues.JSCS allows custom parsers. This is great but some of the syntax nodes that Babel supports aren't supported by JSCS. When using this plugin, JSCS is monkeypatched and your code is transformed into code that JSCS can understand. All location info such as line numbers, columns is also retained so you can track down errors with ease.
Since jscs 2.0 isn't released you will need to
npm i jscs-dev/node-jscs#c5adeba
$ npm i -g jscs # global
$ npm i jscs # local
Example .jscsrc
{
"esnext": true
}
Check out the JSCS docs for all possible rules.
$ jscs your-files-here
# if you didn't add esnext to your config
$ jscs your-files-here --esnext
FAQs
**babel-jscs** allows you to lint **ALL** valid Babel code with [JSCS](https://github.com/jscs-dev/node-jscs). Big thanks to @sebmck!
The npm package babel-jscs receives a total of 5,313 weekly downloads. As such, babel-jscs popularity was classified as popular.
We found that babel-jscs demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
PyPI now allows maintainers to archive projects, improving security and helping users make informed decisions about their dependencies.
Research
Security News
Malicious npm package postcss-optimizer delivers BeaverTail malware, targeting developer systems; similarities to past campaigns suggest a North Korean connection.
Security News
CISA's KEV data is now on GitHub, offering easier access, API integration, commit history tracking, and automated updates for security teams and researchers.