![Malicious npm Package Typosquats react-login-page to Deploy Keylogger](https://cdn.sanity.io/images/cgdhsj6q/production/007b21d9cf9e03ae0bb3f577d1bd59b9d715645a-1024x1024.webp?w=400&fit=max&auto=format)
Research
Security News
Malicious npm Package Typosquats react-login-page to Deploy Keylogger
Socket researchers unpack a typosquatting package with malicious code that logs keystrokes and exfiltrates sensitive data to a remote server.
eslint-plugin-spellcheck
Advanced tools
Readme
eslint plugin to spell check words on identifiers, Strings and comments of javascript files.
"comments": <<Boolean>> default: true
Check Spelling inside comments
"strings": <<Boolean>>, default: true
Check Spelling inside comments
"identifiers": <<Boolean>>, default: true
Check Spelling inside identifiers
"templates": <<Boolean>>, default: true
Check Spelling inside ES6 templates you should enable parser options for ES6 features for this to work
Refer to: [specifying-parser-options](http://eslint.org/docs/user-guide/configuring#specifying-parser-options)
"skipWords": <<Array Of Strings>> default: []
Array of words that will not be checked.
"skipIfMatch": <<Array Of Strings>> default: []
Array of Regular Expressions that if matched will not be checked.
Check example below
Install eslint-plugin-spellcheck
as a dev-dependency:
npm install --save-dev eslint-plugin-spellcheck
Enable the plugin by adding it to your .eslintrc
:
plugins:
- spellcheck
You can also configure these rules in your .eslintrc
. All rules defined in this plugin have to be prefixed by 'spellcheck/'
"plugins": [
"spellcheck"
],
"rules": {
"spellcheck/spell-checker": [1,
{
"comments": "true",
"strings": "true",
"identifiers": "true",
"skipWords": [
"dict",
"aff",
"hunspellchecker",
"hunspell",
"utils"
],
"skipIfMatch": [
"http://[^s]*"
]
}
]
}
Install eslint-plugin-spellcheck
as a global package:
npm install -g eslint-plugin-spellcheck
Enable the plugin by adding it to your eslint.json
:
"plugins": [
"spellcheck"
],
"rules": {
"spellcheck/spell-checker": [1,
{
"comments": "true",
"strings": "true",
"identifiers": "true",
"skipWords": [
"dict",
"aff",
"hunspellchecker",
"hunspell",
"utils"
],
"skipIfMatch": [
"http://[^s]*"
]
}
]
}
FAQs
Unknown package
We found that eslint-plugin-spellcheck demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers unpack a typosquatting package with malicious code that logs keystrokes and exfiltrates sensitive data to a remote server.
Security News
The JavaScript community has launched the e18e initiative to improve ecosystem performance by cleaning up dependency trees, speeding up critical parts of the ecosystem, and documenting lighter alternatives to established tools.
Product
Socket now supports four distinct alert actions instead of the previous two, and alert triaging allows users to override the actions taken for all individual alerts.