eslint-plugin-piggyback
Advanced tools
Readme
Contains the no-restricted-global-extend rule:
Disallow extending the global scope by extending objects that reference it (e.g. 'window')
(AKA "piggybacking" :stuck_out_tongue:)
Not too long ago, the common way separating your code into "modules" was to define an object on the global scope in one script and access it from another script.
Nowadays, with the advent of module systems (AMD,CJS,ES6), you might want to avoid "polluting" the global scope.
In order to enforce this with ESLint, you'll want to use the built-in rule no-undef which will catch any variable not defined within the script.
(function() {
Foo.bar(); //`Foo` is not defined in this script. `no-undef` will catch this
})():
It's common to have some variables that are defined elsewhere but should not throw any errors, such as window if you're writing front-end code.
/*eslint-env browser*/
(function() {
window.location.reload(); //`window` is not defined in this script but `no-undef` will not throw an error because `window` has been white-listed as a valid global
})();
In the case above browser is set as the environment because you want to access window.location which is valid because it exists in any browser (you could also just set /*global window*/).
But once you do this anyone can assign and access other properties on window without triggering a lint violation.
/*eslint-env browser*/
(function() {
window.Foo.bar(); //This will not throw an error despite `Foo` not being defined anywhere and is not a valid property of `window`
})();
This is where no-restricted-global-extend comes in. It can identify cases where you're using an object which references the global scope, and it will alert you if the property you're accessing is not available in the global scope.
This rule can be used in unison with no-undef. See the 'Usage' section below on how to configure it.
/*eslint-env browser*/
(function() {
window.location.reload(); //This is fine
window.console.log(); //This is fine
window.Foo.bar(); //This will throw an error
})();
You'll first need to install ESLint:
$ npm i eslint --save-dev
Next, install eslint-plugin-piggyback:
$ npm install eslint-plugin-piggyback --save-dev
Note: If you installed ESLint globally (using the -g flag) then you must also install eslint-plugin-piggyback globally.
Add piggyback to the plugins section of your .eslintrc configuration file. You can omit the eslint-plugin- prefix:
{
"plugins": [
"piggyback"
]
}
Then configure the 'no-restricted-global-extend' under the rules section.
You must specify which identifiers reference the global scope in your environment (e.g. 'window').
{
"rules": {
"piggyback/no-restricted-global-extend": [2, "window"]
}
}
Run mocha tests with npm test
FAQs
A set of ESLint rules that help catch undeclared references
We found that eslint-plugin-piggyback demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
The US Justice Department has penalized two consulting firms $11.3 million for failing to meet cybersecurity requirements on federally funded projects, emphasizing strict enforcement to protect sensitive government data.
Security News
ua-parser-js is set to drop the MIT license and adopt a controversial dual AGPLv3 + PRO licensing model in its upcoming v2.0 release, raising significant concerns among developers and enterprise users.
Security News
Researchers recently demonstrated that the npm Registry is vulnerable to cache poisoning combined with DoS, posing significant risks for package availability.