36 lines
1 KiB
JavaScript
36 lines
1 KiB
JavaScript
module.exports = {
|
|
env: {
|
|
node: true,
|
|
es2021: true,
|
|
},
|
|
extends: [
|
|
'eslint:recommended',
|
|
'plugin:security/recommended',
|
|
],
|
|
plugins: ['security'],
|
|
parserOptions: {
|
|
ecmaVersion: 'latest',
|
|
sourceType: 'module',
|
|
},
|
|
rules: {
|
|
// Security rules
|
|
'security/detect-object-injection': 'warn',
|
|
'security/detect-non-literal-regexp': 'warn',
|
|
'security/detect-unsafe-regex': 'error',
|
|
'security/detect-buffer-noassert': 'error',
|
|
'security/detect-child-process': 'warn',
|
|
'security/detect-disable-mustache-escape': 'error',
|
|
'security/detect-eval-with-expression': 'error',
|
|
'security/detect-no-csrf-before-method-override': 'error',
|
|
'security/detect-non-literal-fs-filename': 'warn',
|
|
'security/detect-non-literal-require': 'warn',
|
|
'security/detect-possible-timing-attacks': 'warn',
|
|
'security/detect-pseudoRandomBytes': 'error',
|
|
|
|
// Best practices
|
|
'no-console': 'warn',
|
|
'no-eval': 'error',
|
|
'no-implied-eval': 'error',
|
|
'no-new-func': 'error',
|
|
},
|
|
};
|