Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / eslint-community/eslint-plugin-security issues and pull requests

#160 - chore(deps): bump tunnel-agent and changelog

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago
Labels: dependencies

#159 - docs: add TypeScript support section

Pull Request - State: closed - Opened by rhysd about 2 months ago - 2 comments

#158 - chore: add pkg.funding

Pull Request - State: closed - Opened by aladdin-add about 2 months ago

#157 - Bug: no type definitions for eslint flat config

Issue - State: closed - Opened by TheElegantCoding about 2 months ago - 3 comments
Labels: bug

#156 - Two new rules from: eslint-plugin-xss

Issue - State: closed - Opened by darkgreentree 2 months ago - 2 comments

#155 - Does This Plugin Support TypeScript?

Issue - State: closed - Opened by Barzi-Ahmed 2 months ago - 5 comments
Labels: enhancement

#154 - Bug: (fill in)

Issue - State: closed - Opened by nowaysgit 3 months ago - 1 comment
Labels: bug

#153 - chore(deps-dev): bump npm from 8.7.0 to 8.19.4

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago
Labels: dependencies

#152 - chore(deps-dev): bump qs from 6.3.2 to 6.3.3

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago
Labels: dependencies

#151 - chore(deps): bump jsonpointer and is-my-json-valid

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 2 comments
Labels: dependencies

#150 - chore(deps): bump json-schema and jsprim

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago
Labels: dependencies

#149 - chore(deps-dev): bump semantic-release from 19.0.2 to 19.0.3

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago
Labels: dependencies

#148 - chore: release 3.0.0

Pull Request - State: closed - Opened by github-actions[bot] 3 months ago - 1 comment
Labels: autorelease: tagged

#147 - chore: upgrade eslint-doc-generator v1.7.0

Pull Request - State: closed - Opened by aladdin-add 3 months ago

#146 - feat!: requires node ^18.18.0 || ^20.9.0 || >=21.1.0

Pull Request - State: closed - Opened by aladdin-add 3 months ago - 1 comment
Labels: breaking

#145 - fix: Ensure everything works with ESLint v9

Pull Request - State: closed - Opened by nzakas 3 months ago - 1 comment

#144 - ESLint v9 compatibility (TypeError: context.getScope is not a function)

Issue - State: closed - Opened by rivajunior 3 months ago - 8 comments
Labels: bug

#143 - docs: fix typos in regular expression docs

Pull Request - State: closed - Opened by mvolz 3 months ago

#142 - Add support for flat config and types

Issue - State: closed - Opened by TheElegantCoding 3 months ago - 1 comment

#141 - Typo fix in bypass-connect-csrf-protection-by-abusing.md

Pull Request - State: closed - Opened by nikelborm 4 months ago

#140 - chore: release 2.1.1

Pull Request - State: closed - Opened by github-actions[bot] 5 months ago - 1 comment
Labels: autorelease: tagged

#139 - fix: Ensure empty eval() doesn't crash detect-eval-with-expression

Pull Request - State: closed - Opened by nzakas 5 months ago

#137 - Bug: Configuration using JSON eslintrc file

Issue - State: closed - Opened by armfazh 5 months ago - 2 comments
Labels: bug

#136 - Bug: false positive for security/detect-object-injection

Issue - State: closed - Opened by AnnAngela 6 months ago - 2 comments
Labels: bug

#135 - Upgrade causes obscure error

Issue - State: closed - Opened by bibble235 6 months ago - 4 comments
Labels: bug

#134 - Bug: Converting circular structure to JSON when running eslint

Issue - State: closed - Opened by cthacker-udel 7 months ago - 2 comments
Labels: bug

#133 - chore: release 2.1.0

Pull Request - State: closed - Opened by github-actions[bot] 7 months ago - 1 comment
Labels: autorelease: tagged

#132 - feat: add config recommended-legacy

Pull Request - State: closed - Opened by aladdin-add 7 months ago

#131 - Bug: Crashes ESLint due to circular reference in config

Issue - State: closed - Opened by maxmilton 7 months ago - 4 comments
Labels: bug

#130 - Fix grammar and inconsistent formatting

Pull Request - State: closed - Opened by GrantGryczan 7 months ago - 2 comments

#129 - chore: release 2.0.0

Pull Request - State: closed - Opened by github-actions[bot] 9 months ago - 3 comments
Labels: autorelease: tagged

#128 - chore: switch .eslintrc to flat config

Pull Request - State: closed - Opened by aladdin-add 9 months ago
Labels: hacktoberfest-accepted

#127 - Rule Change: (fill in)

Issue - State: closed - Opened by mathieulb 10 months ago - 2 comments
Labels: enhancement

#126 - `security/detect-object-injection` false alarm on type safe key

Issue - State: closed - Opened by loynoir 12 months ago - 5 comments
Labels: bug

#123 - Bug: `security/detect-non-literal-regexp` should ignore `escapeStringRegexp()`

Issue - State: closed - Opened by loynoir about 1 year ago - 1 comment
Labels: bug

#122 - chore: add metadata in the exported object

Pull Request - State: closed - Opened by aladdin-add about 1 year ago

#121 - docs(the-dangers-of-square-bracket-notation): fix broken link

Pull Request - State: closed - Opened by continentaldivide about 1 year ago

#120 - chore: add `format` workflow

Pull Request - State: closed - Opened by MichaelDeBoey about 1 year ago - 3 comments

#119 - chore: add tests for Node 20

Pull Request - State: closed - Opened by MichaelDeBoey about 1 year ago

#118 - feat!: switch the recommended config to flat

Pull Request - State: closed - Opened by aladdin-add about 1 year ago - 2 comments

#117 - New Rule: disallow unicode confusable identifiers

Issue - State: open - Opened by mhofman over 1 year ago - 4 comments

#116 - New Rule: Detect invisible characters

Issue - State: open - Opened by nzakas over 1 year ago

#115 - A Suggestion for the Docs

Issue - State: closed - Opened by MahdiAljazairi over 1 year ago - 2 comments

#114 - chore: release 1.7.1

Pull Request - State: closed - Opened by github-actions[bot] over 1 year ago - 1 comment
Labels: autorelease: tagged

#113 - chore: release 1.7.0

Pull Request - State: closed - Opened by github-actions[bot] over 1 year ago - 1 comment
Labels: autorelease: tagged

#112 - Bug: object injection not detected

Issue - State: closed - Opened by FizzBuzz791 over 1 year ago - 2 comments
Labels: bug

#111 - chore: fix repo url

Pull Request - State: closed - Opened by ota-meshi over 1 year ago

#110 - docs: maybe an error in the-dangers-of-square-bracket-notation

Issue - State: closed - Opened by helicese over 1 year ago - 1 comment

#108 - feat: improve detect-child-process rule

Pull Request - State: closed - Opened by ota-meshi over 1 year ago

#107 - chore: release 1.6.0

Pull Request - State: closed - Opened by github-actions[bot] over 1 year ago - 1 comment
Labels: autorelease: tagged

#106 - chore: npm run format

Pull Request - State: closed - Opened by ota-meshi over 1 year ago

#105 - feat(detect-non-literal-fs-filename): change to track non-top-level `require()` as well

Pull Request - State: closed - Opened by ota-meshi over 1 year ago - 3 comments

#104 - Improve detect-child-process rule

Issue - State: closed - Opened by ota-meshi over 1 year ago

#103 - fix(detect-child-process): false positives for destructuring `spawn`

Pull Request - State: closed - Opened by ota-meshi over 1 year ago

#101 - docs: automate docs with `eslint-doc-generator`

Pull Request - State: closed - Opened by bmish over 1 year ago

#100 - docs: add npm version badge

Pull Request - State: closed - Opened by bmish over 1 year ago - 1 comment

#99 - docs: use `eslint-doc-generator`

Issue - State: closed - Opened by MichaelDeBoey over 1 year ago

#98 - Update wording

Pull Request - State: closed - Opened by nicolapalavecino over 1 year ago

#97 - fix: Avoid TypeError when exec stub is used with no arguments

Pull Request - State: closed - Opened by lingo over 1 year ago

#96 - ci: add node 18 to test matrix, remove node 17

Pull Request - State: closed - Opened by Fdawgs over 1 year ago

#95 - feat: detect trojan source attack

Pull Request - State: closed - Opened by simone-sanfratello over 1 year ago - 13 comments

#94 - ci: update workflows

Pull Request - State: closed - Opened by Fdawgs over 1 year ago

#93 - Invitation to move to official `eslint-community` org

Issue - State: closed - Opened by MichaelDeBoey almost 2 years ago - 7 comments

#92 - feat: extend detect non literal fs filename

Pull Request - State: closed - Opened by BuZZ-T almost 2 years ago - 13 comments

#91 - chore: add `eslint-plugin-eslint-plugin`

Pull Request - State: closed - Opened by bmish almost 2 years ago

#90 - Java generator always adds @Json annotations for enums

Issue - State: closed - Opened by micro-jumbo almost 2 years ago

#89 - detect-non-literal-fs-filename - add a check is it fs method at the first place

Pull Request - State: closed - Opened by revelt almost 2 years ago - 3 comments

#88 - `detect-non-literal-fs-filename` matches inconsistently

Issue - State: closed - Opened by TikiTDO about 2 years ago - 2 comments

#86 - Changelog for v1.5.0

Pull Request - State: closed - Opened by anjannair about 2 years ago

#85 - ci: bump github actions

Pull Request - State: closed - Opened by Fdawgs about 2 years ago

#84 - Add missing 1.5.0 changelog

Issue - State: closed - Opened by sampsakuronen about 2 years ago

#83 - Deprecate detect-buffer-noassert

Issue - State: open - Opened by nzakas about 2 years ago

#82 - fix(detect-child-process): Empty array case handled

Pull Request - State: closed - Opened by MarkKragerup over 2 years ago - 7 comments

#81 - feat(non-literal-require): support template literals

Pull Request - State: closed - Opened by MarkKragerup over 2 years ago - 1 comment

#80 - Fix: Corrected Typo. Replaces #63

Pull Request - State: closed - Opened by MarkKragerup over 2 years ago - 6 comments

#79 - Add meta object documentation for all rules. Closes #48

Pull Request - State: closed - Opened by MarkKragerup over 2 years ago - 4 comments

#78 - feat: Implement standardized formatting. Closes #4

Pull Request - State: closed - Opened by MarkKragerup over 2 years ago - 9 comments

#76 - Help wanted: Issue and PR Review

Issue - State: open - Opened by nzakas over 2 years ago - 2 comments
Labels: help wanted

#75 - Package Modernization

Issue - State: closed - Opened by nzakas over 2 years ago - 10 comments

#74 - Fix typos in documentation

Pull Request - State: closed - Opened by myersg86 over 2 years ago

#73 - add yarn installation

Pull Request - State: closed - Opened by Hashen110 over 2 years ago

#72 - Including "unicode bidi attacks" defense

Issue - State: closed - Opened by fritx over 2 years ago - 2 comments

#71 - I would like to take over as maintainer

Issue - State: closed - Opened by nzakas over 2 years ago - 24 comments

#70 - Is this a timing attack?

Issue - State: open - Opened by jimisaacs over 2 years ago - 3 comments

#68 - Better link to time attack explanation

Pull Request - State: closed - Opened by PaulAnnekov about 3 years ago - 3 comments

#67 - Heuristics for detect-object-injection

Issue - State: closed - Opened by adrianhelvik over 3 years ago - 3 comments

#66 - Is this still maintained ?

Issue - State: closed - Opened by Tjerk-Haaye-Henricus almost 4 years ago - 4 comments

#65 - False alarm for “Found fs.readFile with non literal argument at index 0”?

Issue - State: closed - Opened by Hongbo-Miao almost 4 years ago - 5 comments

#64 - detect-child-process false-positive with exec

Issue - State: closed - Opened by modestfake almost 4 years ago - 1 comment

#63 - Update detect-buffer-noassert.js

Pull Request - State: closed - Opened by sabrinabrogren almost 4 years ago - 1 comment

#62 - No need for `plugins` since the `recommended` config already includes it

Pull Request - State: closed - Opened by brettz9 about 4 years ago - 3 comments

#61 - Add ESLint meta object with description and category

Pull Request - State: closed - Opened by lolgab over 4 years ago - 6 comments

#60 - Develop & Maintain

Issue - State: closed - Opened by gkouziik over 4 years ago - 3 comments

#59 - Update avoid-command-injection-node.md

Pull Request - State: closed - Opened by 0xflotus over 4 years ago