Security News
NIST Misses 2024 Deadline to Clear NVD Backlog
NIST has failed to meet its self-imposed deadline of clearing the NVD's backlog by the end of the fiscal year. Meanwhile, CVE's awaiting analysis have increased by 33% since June.
eslint-config-muriki
Advanced tools
npm install --save-dev eslint eslint-config-muriki
You'll probably want to use eslint-plugin-muriki instead.
To lint your code with ESLint create a file .eslintrc.js
in your project root.
module.exports = { extends: 'muriki' };
Add a lint script to your package.json
.
{
"scripts": {
"lint": "eslint ...[file|dir]"
}
}
You can use a few different configs.
You can extend a preset like so.
module.exports = { extends: 'muriki/test' };
It's obligatory to install IDE plugins and enabled auto-fixing.
Atom
https://github.com/AtomLinter/linter-eslint
Sublime Text
https://github.com/roadhump/SublimeLinter-eslint
VSCode
https://marketplace.visualstudio.com/items?itemName=dbaeumer.vscode-eslint
WebStorm
https://www.jetbrains.com/help/webstorm/2016.1/eslint.html
It's possible to lint your code on commit to keep the repository clean and the feedback early.
Dependencies
npm install --save-dev husky lint-staged
package.json
{
"scripts": {
{ "precommit": "lint-staged" }
},
"lint-staged": { "*.js": "eslint" }
}
FAQs
My extensive, opinionated ESLint config.
We found that eslint-config-muriki demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
NIST has failed to meet its self-imposed deadline of clearing the NVD's backlog by the end of the fiscal year. Meanwhile, CVE's awaiting analysis have increased by 33% since June.
Security News
Cloudflare has launched a setup wizard allowing users to easily create and manage a security.txt file for vulnerability disclosure on their websites.
Security News
The Socket Research team breaks down a malicious npm package targeting the legitimate DOMPurify library. It uses obfuscated code to hide that it is exfiltrating browser and crypto wallet data.