New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More
Socket
Sign inDemoInstall
Socket

cflint

Package Overview
Dependencies
Maintainers
2
Versions
12
Alerts
File Explorer

Advanced tools

Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

cflint

CFLint is a tool for identifying and reporting on patterns found in CFML code.

  • 1.5.0
  • latest
  • Source
  • npm
  • Socket score

Version published
Weekly downloads
858
increased by27.3%
Maintainers
2
Weekly downloads
 
Created
Source

CFLint

CFLint is a tool for identifying and reporting on patterns found in CFML code.

This is NPM wrapper for the actual CFLint project https://github.com/cflint/CFLint

A big thank you to the CFLint team for all their work :thumbsup:

Global Installation and Usage

If you want to make CFLint available to tools that run across all of your projects, we recommend installing CFLint globally. You can do so using npm:

$ npm install -g cflint

You should then setup a configuration file (The '-init' argument is only part of the NPM wrapper).

$ cflint -init

After that, you can run CFLint on any file or directory like this:

$ cflint -file yourfile.cfm
$ cflint -folder ./

Check out https://github.com/cflint/CFLint#user-manual for all the documentation.

Quick Configuration

When you run CFLint it will search the current directory and parent directories for a ".cflintrc" file. If found it will automaticly use that configuration.

After running cflint -init, you'll have a .cflintrc file in your directory. In it, you'll see some rules configured like this:

{
  "rule" : [ ],
  "excludes" : [ ],
  "includes" : [ { } ],
  "inheritParent" : false,
  "parameters":{}
}

The default configuration will only find parsing errors. All other rule are excluded, this is done by setting "includes" to an empty object. To include all rules again change "includes" to an empty array.

All the rules can be found here: https://github.com/cflint/CFLint/blob/master/RULES.md

FAQs

Package last updated on 17 Mar 2020

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

SocketSocket SOC 2 Logo

Product

  • Package Alerts
  • Integrations
  • Docs
  • Pricing
  • FAQ
  • Roadmap
  • Changelog

Packages

npm

Stay in touch

Get open source security insights delivered straight into your inbox.


  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc