constpluginSecurity=require('eslint-plugin-security');module.exports=[pluginSecurity.configs.recommended]; eslintrc config (deprecated) Add the following to your.eslintrcfile: module.exports={extends:['plugin:security/recommended-legacy'],}; ...
eslint-plugin-security eslint-plugin-security 是一个 ESLint 插件,用于检测 JavaScript 代码中的常见安全问题。 这里给出它的一个简要概述: 名称:eslint-plugin-security 作用:通过 ESLint 规则检查 JavaScript 代码中的安全隐患 检测项: XSS(跨站脚本); SQL 注入; 缓冲区溢出; XXE; 敏感数据泄漏; ...
disable-ssl-across-node-server.md non-literal-reg-expr.md lib tests .eslintrc.json .gitignore .release-it.json CHANGELOG.md README.md index.js package-lock.json package.jsonBreadcrumbs eslint-plugin-security-node /docs /rules / detect-option-rejectunauthorized-in-nodejs-h...
:( ESLint: 9.0.0 TypeError: context.getScope is not a function Occurred while linting /my/project/path/banner.ts:13 Rule: "security/detect-child-process" at CallExpression (/my/project/path/node_modules/eslint-plugin-security/rules/detect-child-process.js:49:28) at ruleErrorHandler (/my...
AnnAngela/eslint-plugin-security-rules-detect-object-injectionmaster 1 Branch0 Tags Code Folders and filesLatest commit AnnAngela Update linter.yaml cb34e7d· Jan 4, 2024 History6 Commits .github/workflows Update linter.yaml Jan 4, 2024
Saved searches Use saved searches to filter your results more quickly Cancel Create saved search Sign in Sign up Reseting focus {{ message }} LewisArdern / eslint-plugin-angularjs-security-rules Public Notifications You must be signed in to change notification settings Fork 5 ...
https://www.npmjs.com/package/eslint-plugin-security This adds linting rules that catch well know potential security issues in javascript.
AnnAngela/eslint-plugin-security-rules-detect-object-injectionPublic NotificationsYou must be signed in to change notification settings Fork0 Star0 Code Issues Pull requests Actions Projects Security Insights Additional navigation options Commit Create index.js ...
The security/detect-non-literal-fs-filename rule reports fs.${whatever} regardless of whether that's what i'm using or not. For example, i use jsonFile a lot, so an error with jsonFile.readFile gets reported as fs.readFile, when there is no reference to fs on that page. Sure, ...
21 - "https://github.com/eslint-community/eslint-plugin-security/blob/main/docs/rules/{{name}}.md", 22 - }, 16 + "pattern": "https://github.com/eslint-community/eslint-plugin-security/blob/main/docs/rules/{{name}}.md" 17 + } 23 18 ], 24 19 "eslint-plugin/requir...