@iceworks/eslint-plugin-security-practices v0.1.5

@iceworks/eslint-plugin-security-practices

Iceworks doctor security practices eslint plugin.

Installation

Install esLint, @ice/spec and @iceworks/eslint-plugin-security-practices:

$ npm install --save-dev eslint @ice/spec @iceworks/eslint-plugin-security-practices

Usage

Add security-practices to the plugins section of your .eslintrc configuration file.

{
    "plugins": [
        "@iceworks/security-practices"
    ]
}

Then configure the rules you want to use under the rules section.

{
 		"plugins": [
        "@iceworks/security-practices"
    ],
    "rules": {
        "@iceworks/security-practices/rule-name": 2
    }
}

Or you can only use extends to set default rules config.

{
    "extends": ["plugin:@iceworks/security-practices/recommended"]
};

Supported Rules

• no-http-url Recommended the http url switch to HTTPS.
• no-internal-url The group internal url is not recommended.
• no-patent-licenses Recommend using the dependency with Open-Source license.
• no-secret-info Don't show password token and secret in plain text.
• no-sensitive-word Don't use some sensitive word.