☔️ eslint-config-sec
Linting rules for safe and secure client code
Rules included
Extends eslint-plugin-no-unsanitized
, see documentation.
Additional rules:
-
no-eval
- eval('evil code') -
no-implied-eval
- same as eval -
radix
- parseInt('12345', 10) without radix -
no-debugger
- disallow debugger; in code -
no-new-func
- new Function('evil code')
Usage
- Install the config:
npm i -D eslint-config-sec
- Add config to the
extends
section on your.eslintrc.js
file:
"extends": [
+ "eslint-config-sec"
]