我对 eslint 很陌生,我的一位客户要求使用 Eslint 进行安全检查,并要求对 ESLint 使用 AngularJS 安全规则(https://www.npmjs.com/package/eslint-plugin-angularjs-security-rules)。我不清楚执行此任务的正确过程是什么,我有 angular 6 项目。我做了以下步骤 1. npm i eslint-plugin-angularjs-security-rules 2. 更新 package.json 文件添加 "eslint": "^4.16.0" 3. 运行 npm i 4. 创建 .eslintrc 文件并添加以下代码
{
"env" : {
"browser" : true,
"es6" : true
},
"plugins" : [
"angularjs-security-rules"
],
"rules" : {
"angularjs-security-rules/detect-angular-trustAs-methods": 1,
"angularjs-security-rules/detect-angular-trustAsHtml-method": 1,
"angularjs-security-rules/detect-angular-trustAsCss-method": 1,
"angularjs-security-rules/detect-angular-trustAsUrl-method": 1,
"angularjs-security-rules/detect-angular-trustAsJs-method": 1,
"angularjs-security-rules/detect-angular-trustAsResourceUrl-method": 1,
"angularjs-security-rules/detect-angular-open-redirect": 1,
"angularjs-security-rules/detect-angular-element-methods": 1,
"angularjs-security-rules/detect-angular-orderBy-expressions": 1,
"angularjs-security-rules/detect-angular-resource-loading": 1,
"angularjs-security-rules/detect-angular-sce-disabled": 1,
"angularjs-security-rules/detect-angular-scope-expressions": 1,
"angularjs-security-rules/detect-angular-service-expressions": 1,
"angularjs-security-rules/detect-third-party-angular-translate": 1
}
}
在此之后我没有任何线索可以使用 eslint 命令扫描我的代码仓库并查找错误。