Security News
Supply Chain Attack Detected in Solana's web3.js Library
A supply chain attack has been detected in versions 1.95.6 and 1.95.7 of the popular @solana/web3.js library.
eslint-config-expensify
Advanced tools
Expensify's ESLint configuration following our style guide
This package provides Expensify's .eslintrc as an extensible shared config. Most of our rules are based on Airbnb's style guide.
package.json
file in your PR. A github action will automatically bump the version and publish the package to npm after PR is merged.After you have submitted a PR,
npm install git+https://github.com/Expensify/eslint-config-expensify.git#COMMIT_ID
in the repo against which you want to test those changes.eslint-config-expensify
in package-lock.json
file, and ensures the repo is referencing to the correct local version of the eslint config.npm run lint
or perform any other tests you want in that repo.npm install eslint-config-expensify@latest
. This should update the package.json
and package-lock.json
file, and you can submit a PR with those changes.Note as of now we have no way of testing these PRs without a separate App, Web or Web Secure PR
We export two ESLint configurations for your usage.
Our default export contains all of our ESLint rules, including ECMAScript 6+ and React. It requires eslint
, eslint-plugin-import
, eslint-plugin-react
, and eslint-plugin-jsx-a11y
.
Just add extends: 'expensify'
to the .eslintrc
file in the root directory of your project.
Just add extends: 'expensify/legacy'
to the .eslintrc
file in the root directory of your project.
Feel free to also check out our Javascript style guide, our general language-agnostic coding standards, and the ESlint config docs for more information.
FAQs
Expensify's ESLint configuration following our style guide
We found that eslint-config-expensify demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
A supply chain attack has been detected in versions 1.95.6 and 1.95.7 of the popular @solana/web3.js library.
Research
Security News
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
Security News
Research
Socket researchers have discovered malicious npm packages targeting crypto developers, stealing credentials and wallet data using spyware delivered through typosquats of popular cryptographic libraries.