
Security News
PodRocket Podcast: Inside the Recent npm Supply Chain Attacks
Socket CEO Feross Aboukhadijeh discusses the recent npm supply chain attacks on PodRocket, covering novel attack vectors and how developers can protect themselves.
eslint-plugin-scanjs-rules
Advanced tools
These are supplemental rules for ESLint to introduce functionality similar to to what the existing ScanJS rules do.
This package does not contain rules that are already within ESLint but required for full ScanJS feature parity. You are therefore encouraged to use these rules with a provided config, which is available as eslint-config-scanjs
FAQs
ESLint plugin that contains ScanJS rules
The npm package eslint-plugin-scanjs-rules receives a total of 10,436 weekly downloads. As such, eslint-plugin-scanjs-rules popularity was classified as popular.
We found that eslint-plugin-scanjs-rules demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Socket CEO Feross Aboukhadijeh discusses the recent npm supply chain attacks on PodRocket, covering novel attack vectors and how developers can protect themselves.
Security News
Maintainers back GitHub’s npm security overhaul but raise concerns about CI/CD workflows, enterprise support, and token management.
Product
Socket Firewall is a free tool that blocks malicious packages at install time, giving developers proactive protection against rising supply chain attacks.