
Research
Malicious npm Packages Impersonate Flashbots SDKs, Targeting Ethereum Wallet Credentials
Four npm packages disguised as cryptographic tools steal developer credentials and send them to attacker-controlled Telegram infrastructure.
eslint-config-tradeshift
Advanced tools
Install eslint-config-tradeshift:
$ npm install --save-dev eslint-config-tradeshift
Then, add eslint-config-tradeshift to the "extends" array in your .eslintrc.*
file. Make sure to put it last, so it gets the chance to override other
configs.
Expected default configuration for a typescript project:
{
"extends": [
"eslint-config-tradeshift",
"eslint-config-tradeshift/jest",
"eslint-config-tradeshift/typescript"
]
}
The configuration options are based on eslint-config-react-app.
Thanks to @sqren for starting this project!
ISC. Copyright (c) 2019, Tradeshift.
FAQs
Javascript Tradeshift Style - ESLint Shareable Config
The npm package eslint-config-tradeshift receives a total of 1,947 weekly downloads. As such, eslint-config-tradeshift popularity was classified as popular.
We found that eslint-config-tradeshift demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 4 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Four npm packages disguised as cryptographic tools steal developer credentials and send them to attacker-controlled Telegram infrastructure.
Security News
Ruby maintainers from Bundler and rbenv teams are building rv to bring Python uv's speed and unified tooling approach to Ruby development.
Security News
Following last week’s supply chain attack, Nx published findings on the GitHub Actions exploit and moved npm publishing to Trusted Publishers.