Research
Security News
Malicious npm Package Targets Solana Developers and Hijacks Funds
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
By Socket Research Team - Dec 02, 2024
Huge News!Announcing our $40M Series B led by Abstract Ventures.Learn More →
eslint-plugin-i18n-json
Advanced tools
eslint-plugin-i18n-json
Fully extendable eslint plugin for JSON i18n translation files.
eslint-plugin-i18n-json
Fully extendable eslint plugin for JSON i18n translation files.
🎉 Check out the introductory blog post!
Table of Contents
- Features
- Getting started
- Examples
- Configuring your .eslintrc file
- Rules
- Settings
- Special Thanks
- License
- Changelog
Features 🚀
-
lint JSON translation files
- rule:
i18n-json/valid-json - configure a custom linter in case the default doesn't fit your needs.
- rule:
-
validate syntax per message
- rule:
i18n-json/valid-message-syntax - default syntax check is for ICU Message Syntax
- can support any message syntax through custom validators. Example
- rule:
-
ensure translation files have identical keys
- rule:
i18n-json/identical-keys - supports different custom mappings and on the fly key structure generation
- rule:
-
sort translation keys in ascending order through eslint auto-fix (case-sensitive)
- rule:
i18n-json/sorted-keys - can support a custom sort function to satisfy different sorting needs
- rule:
-
ensure translation files have identical placeholders
- rule:
i18n-json/identical-placeholders
- rule:
-
ability to ignore certain keys. Example: metadata keys, in progress translations, etc.
- setting:
i18n-json/ignore-keysExample
- setting:
-
The plugin supports any level of nesting in the translation file. (escapes
.in key names)
Note: Check out the Examples folder to see different use cases and project setups.
Requires
- eslint >= 4.0.0
- node >= 6.0.0
Examples
Check out the Examples folder to see different use cases.
- Basic Setup
- Custom Message Syntax
- Custom Sorting Function For Keys
- Identical Keys (Simple)
- Ignoring Keys
- Multiple Files Per Locale
- Webpack Development (eslint-loader)
Getting Started
Right out of the box you get the following through our recommended ruleset i18n-json/recommended:
- i18n-json/valid-json
- linting of each JSON translation file
- default severity: error | 2
- i18n-json/valid-message-syntax
- default ICU Message syntax validation (using
@formatjs/icu-messageformat-parser) - default severity: error | 2
- default ICU Message syntax validation (using
- i18n-json/sorted-keys
- automatic case-sensitive ascending sort of all keys in the translation file.
- Does a level order traversal of keys, and supports sorting nested objects
Let's say your translations project directory looks like the following, (project name: simple)
> tree simple -I node_modules
simple
├── package.json
├── readme.md
└── translations
├── en-US
│ └── index.json
└── es-MX
└── index.json
In this project directory, do the following:
-
npm install --save-dev eslint-plugin-i18n-json
-
Create a
.eslintrc.jsfile in the root dir of your project. For this example:/simple/.eslintrc.js. -
paste in the following:
module.exports = { extends: [ 'plugin:i18n-json/recommended', ], }; -
add this npm script to your
package.jsonfile.- note:
- without the
--fixoption, sorting the translation file won't work - the default eslint report formatter,
stylish, doesn't handle lint messages of varying length well. Hence, we have also built acustom report formatterwell suited for this plugin.
- without the
{ "scripts": { "lint": "eslint --fix --ext .json --format node_modules/eslint-plugin-i18n-json/formatter.js translations/" } }- Also, the following builtin formatters provided by eslint also work well:
compact,unix,visualstudio,json. Learn more here- Example usage:
eslint --fix --ext .json --format compact translations/
- Example usage:
- note:
-
npm run lint
-
Profit! Relax knowing that each change to the translations project will go through strict checks by the eslint plugin.
Example where we have invalid ICU message syntax.
Configuring your .eslintrc file
-
Simply update your
.eslintrc.*with overrides for the individual rules. -
Eslint severities: 2 = error, 1 = warning, 0 = off
-
Example of the module's default rule configuration:
- see below for more information about how to further configure each rule. (some options may require switching to a
.eslintrc.jsfile)
// .eslintrc.json { "rules": { "i18n-json/valid-message-syntax": [2, { "syntax": "icu" }], "i18n-json/valid-json": 2, "i18n-json/sorted-keys": [2, { "order": "asc", "indentSpaces": 2, }], "i18n-json/identical-keys": 0 } }// .eslintrc.js module.exports = { rules: { 'i18n-json/valid-message-syntax': [2, { syntax: 'icu', }], 'i18n-json/valid-json': 2, 'i18n-json/sorted-keys': [2, { order: 'asc', indentSpaces: 2, }], 'i18n-json/identical-keys': 0, }, }; - see below for more information about how to further configure each rule. (some options may require switching to a
Rules
i18n-json/valid-json
-
linting of each JSON translation file
-
builtin linter uses
json-lint -
default severity: error | 2
-
options
linter: String (Optional)- Absolute path to a module which exports a JSON linting function.
Function(source: String)- This function will be passed the source of the current file being processed.
- It should throw an Error, just like
JSON.parse.// .eslintrc.js module.exports = { rules: { 'i18n-json/valid-json': [2, { linter: path.resolve('path/to/custom-linter.js'), }], }, };// custom-linter.js module.exports = (source) => { if (isBad(source)) { throw new SyntaxError('invalid syntax'); } };
- Absolute path to a module which exports a JSON linting function.
Example output for Invalid JSON.
i18n-json/valid-message-syntax
-
default ICU Message syntax validation (using
@formatjs/icu-messageformat-parser) -
default severity: error | 2
-
options
syntax: String (Optional). Default value:icu.-
Can be a built in validator:
icu,non-empty-string.// .eslintrc.js module.exports = { rules: { 'i18n-json/valid-message-syntax': [2, { syntax: 'non-empty-string', }], }, }; -
Can be an absolute path to a module which exports a Syntax Validator Function.
Function(message: String, key: String)- This function will be invoked with each
messageand its correspondingkey - It should throw an Error, just like
JSON.parseon invalid syntax.// .eslintrc.js module.exports = { rules: { 'i18n-json/valid-message-syntax': [2, { syntax: path.resolve('path/to/custom-syntax-validator.js'), }], }, };// custom-syntax-validator.js example module.exports = (message, key) => { // each message should be in all caps. if (message !== message.toUpperCase()) { throw new SyntaxError('MESSAGE MUST BE IN ALL CAPS!'); } };
-
Output from the custom-message-syntax example where each message must have the word 'PIZZA' prepended to it.
i18n-json/identical-keys
-
compare each translation file's key structure with a reference translation file to ensure consistency
-
severity: 0 | off , this rule is OFF by default
-
Can turn this rule on by specifying options for it through your
.eslintrc.*file. -
options
-
filePath: String | Object (Required)-
Can be an absolute path to the reference translation file.
// .eslintrc.js module.exports = { rules: { 'i18n-json/identical-keys': [2, { filePath: path.resolve('path/to/locale/en-US.json'), }], }, }; -
Can be an Object which contains a Mapping for how to choose a reference translation file. (chosen by suffix match)
// .eslintrc.js module.exports = { rules: { 'i18n-json/identical-keys': [2, { filePath: { 'login.json': path.resolve('./translations/en-US/login.json'), 'search-results.json': path.resolve('./translations/en-US/search-results.json'), 'todos.json': path.resolve('./translations/en-US/todos.json'), }, }], }, };- values in the path must be the absolute file path to the reference translation file.
- the plugin will do a suffix match on the current file's path to determine which reference translation file to choose.
-
Can be an absolute path to an exported function which generates the reference key structure on the fly. The function will be passed the parsed JSON translations object and absolute path of the current file being processed.
Function(translations: Object, currentFileAbsolutePath: String) : Object
// .eslintrc.js module.exports = { rules: { 'i18n-json/identical-keys': [2, { filePath: path.resolve('path/to/key-structure-generator.js'), }], }, };// key-structure-generator.js example module.exports = (translations, currentFileAbsolutePath) => { // identity key structure generator return translations; };
-
Output from the slightly advanced identical keys example where some keys from the reference translation file (
en-US) were not found during comparison.
-
i18n-json/sorted-keys
-
automatic case-sensitive ascending sort of all keys in the translation file
-
if turned on, the this rule by will sort keys in an ascending order by default.
-
default severity: error | 2
-
options
sortFunctionPath: String (Optional). Absolute path to a module which exports a custom sort function. The function should return the desired order of translation keys. The rule will do a level order traversal of the translations and call this custom sort at each level of the object, hence supporting nested objects. This option takes precedence over theorderoption.- NOTE: eslint does additional verification passes on your files after a "fix" is applied (in our case, once the sorted keys are written back to your JSON file). Ensure your sort function won't switch the ordering once the keys are already sorted. For example, if your sort function looks like
Object.keys(translations).reverse(), then on the initial pass your keys would be sorted correctly, but in the next pass the order of keys would again be reversed. This would lead to a loop where eslint cannot verify the fix is working correctly. Eslint will not apply the intended sorting fixes in this scenarios. Function(translations: Object) : Array
// .eslintrc.js module.exports = { rules: { 'i18n-json/sorted-keys': [2, { sortFunctionPath: path.resolve('path/to/custom-sort.js'), }], }, };// custom-sort.js example // Ascending sort module.exports = (translations) => { return Object.keys(translations).sort((keyA, keyB) => { if (keyA == keyB) { return 0; } else if (keyA < keyB) { return -1; } else { return 1; } }) };- NOTE: eslint does additional verification passes on your files after a "fix" is applied (in our case, once the sorted keys are written back to your JSON file). Ensure your sort function won't switch the ordering once the keys are already sorted. For example, if your sort function looks like
order: String (Optional). Possible values:asc|desc. Default value:asc. Case-sensitive sort order of translation keys. The rule does a level order traversal of object keys. Supports nested objects. Note: if you supply a custom sort function throughsortFunctionPath, then this option will be ignored.indentSpaces: Number (Optional). Default value:2. The number of spaces to indent the emitted sorted translations with. (Will be passed toJSON.stringifywhen generating fixed output). In the case--fixis not supplied to eslint, and thei18n-json/sorted-keysrule is not switched off, it will emit anerror(orwarning) if it detects an invalid sort order for translation keys.
i18n-json/identical-placeholders
- compare each translation's placeholders with the reference file to ensure consistency
- severity: 0 | off , this rule is OFF by default
- Can turn this rule on by specifying options for it through your
.eslintrc.*file. - options
-
filePath: String (Required)- Can be an absolute path to the reference translation file.
// .eslintrc.js module.exports = { rules: { 'i18n-json/identical-placeholders': [2, { filePath: path.resolve('path/to/locale/en-US.json'), }], }, };
- Can be an absolute path to the reference translation file.
-
Settings
i18n-json/ignore-keys
- list of key paths (case sensitive) to ignore when checking syntax and doing key structure comparisons. Example
- this setting is used by the following rules:
i18n-json/identical-keys,i18n-json/valid-syntaxandi18n-json/identical-placeholders. - if the key path points to an object, the nested paths are also ignored.
- e.g. if the key
awas added to theignore-keyslist, thena.bwill also be ignored.{ "a": { "b": "translation" } }
- e.g. if the key
- example usage: metadata keys with values not corresponding to the syntax specified or work-in-progress translation keys which should not be used in comparisons.
Example setting configuration:
// .eslintrc.js
{
settings: {
/*
None of the key paths listed below
will be checked for valid i18n syntax
nor be used in the identical-keys rule comparison.
(if the key path points to an object, the nested paths are also ignored)
*/
'i18n-json/ignore-keys': [
'translationMetadata',
'login.form.inProgressTranslationKey',
'some-key'
],
},
}
Disclaimer
- None of the translations in the examples provided reflect actual GoDaddy translations. They were just created using Google Translate for example's sake 😉.
Special Thanks 👏
-
Jest platform packages
-
@formatjs/icu-messageformat-parser
-
report formatter ui heavily inspired from: https://github.com/sindresorhus/eslint-formatter-pretty
-
"Translate" icon created by Björn Andersson, from the Noun Project. Used with attribution under Creative Commons.
License 📋
MIT
[4.0.0] - 2021-04-13 - MAJOR BUMP
- Switch to
@formatjs/icu-messageformat-parserasintl-messageformat-parseris now deprecated. This is a breaking change, the new parser uses icu4j implementation and has stricter validations. - Add new rule
i18n-json/identical-placeholders. - Related PRs
FAQs
Fully extendable eslint plugin for JSON i18n translation files.
The npm package eslint-plugin-i18n-json receives a total of 32,551 weekly downloads. As such, eslint-plugin-i18n-json popularity was classified as popular.
We found that eslint-plugin-i18n-json demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 15 open source maintainers collaborating on the project.
Package last updated on 13 Sep 2022
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
Research
Typosquatting Cryptographic Libraries: Malicious npm Packages Threaten Crypto Developers with Keylogging and Wallet Theft
Socket researchers have discovered malicious npm packages targeting crypto developers, stealing credentials and wallet data using spyware delivered through typosquats of popular cryptographic libraries.
By Kirill Boychenko - Nov 27, 2024
Security News
Weekly Downloads Now Available in npm Package Search Results
Socket's package search now displays weekly downloads for npm packages, helping developers quickly assess popularity and make more informed decisions.
By Sarah Gooding - Nov 26, 2024