core icon indicating copy to clipboard operation
core copied to clipboard
verified publisher icon MetaMask

Bump `eslint` to `^9.11.1` and migrate to flat config

Open MajorLift opened this issue 1 year ago • 2 comments

Explanation

References

  • Closes https://github.com/MetaMask/core/issues/4745

Changelog

@metamask/package-a

  • <CATEGORY>: Your change here
  • <CATEGORY>: Your change here

@metamask/package-b

  • <CATEGORY>: Your change here
  • <CATEGORY>: Your change here

Checklist

  • [ ] I've updated the test suite for new or updated code as appropriate
  • [ ] I've updated documentation (JSDoc, Markdown, etc.) for new or updated code as appropriate
  • [ ] I've highlighted breaking changes using the "BREAKING" category above as appropriate
  • [ ] I've prepared draft pull requests for clients and consumer packages to resolve any breaking changes

MajorLift avatar Sep 24 '24 11:09 MajorLift

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package New capabilities Transitives Size Publisher
npm/@babel/[email protected] environment 0 33.2 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 66.5 kB nicolo-ribaudo
npm/@babel/[email protected] environment, filesystem, unsafe 0 794 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 546 kB nicolo-ribaudo
npm/@babel/[email protected] environment 0 53.5 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 63.7 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 161 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 31.8 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 48.3 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 11.8 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 863 kB nicolo-ribaudo
npm/@babel/[email protected] None 0 1.9 MB nicolo-ribaudo
npm/@babel/[email protected] Transitive: environment +1 2.62 MB nicolo-ribaudo
npm/@babel/[email protected] Transitive: environment +1 716 kB nicolo-ribaudo
npm/@es-joy/[email protected] None 0 121 kB brettz9
npm/@eslint-community/[email protected] None +1 410 kB eslint-community-bot
npm/@eslint-community/[email protected] None 0 473 kB eslint-community-bot
npm/@eslint/[email protected] None 0 315 kB eslintbot
npm/@eslint/[email protected] None 0 60 kB eslintbot
npm/@eslint/[email protected] filesystem, unsafe Transitive: environment +4 1.45 MB eslintbot
npm/@eslint/[email protected] None 0 14.9 kB eslintbot, openjsfoundation
npm/@eslint/[email protected] None 0 57 kB eslintbot
npm/@eslint/[email protected] None 0 77.1 kB eslintbot
npm/@humanfs/[email protected] None 0 72.7 kB nzakas
npm/@humanfs/[email protected] None +1 89.5 kB nzakas
npm/@humanwhocodes/[email protected] None 0 64.9 kB nzakas
npm/@jest/[email protected] None 0 6.07 kB simenb
npm/@metamask/[email protected] None +1 215 kB metamaskbot
npm/@metamask/[email protected] Transitive: environment, filesystem +2 283 kB metamaskbot
npm/@metamask/[email protected] None 0 12.2 kB metamaskbot
npm/@metamask/[email protected] unsafe 0 98.4 kB metamaskbot
npm/@metamask/[email protected] None 0 22.7 kB metamaskbot
npm/@metamask/[email protected] unsafe +1 307 kB metamaskbot
npm/@nolyfill/[email protected] unsafe 0 2.71 kB sukkaw
npm/@sinclair/[email protected] None 0 442 kB sinclair
npm/@types/[email protected] None 0 8.49 kB types
npm/@typescript-eslint/[email protected] None 0 2.79 MB bradzacher, jameshenry
npm/@typescript-eslint/[email protected] None 0 18.9 kB bradzacher, jameshenry
npm/@typescript-eslint/[email protected] None 0 626 kB bradzacher, jameshenry
npm/@typescript-eslint/[email protected] None 0 127 kB bradzacher, jameshenry
npm/@typescript-eslint/[email protected] None 0 174 kB bradzacher, jameshenry
npm/@typescript-eslint/[email protected] None 0 594 kB bradzacher, jameshenry
npm/@typescript-eslint/[email protected] None 0 288 kB bradzacher, jameshenry
npm/@typescript-eslint/[email protected] None 0 19.6 kB bradzacher, jameshenry
npm/[email protected] None 0 547 kB marijn
npm/[email protected] None 0 13.6 kB joshuakgoldberg
npm/[email protected] None 0 64.9 kB ai
npm/[email protected] None 0 2.15 MB caniuse-lite
npm/[email protected] None 0 366 kB yavorskiys
npm/[email protected] None 0 154 kB kilianvalkhof
npm/[email protected] None 0 212 kB evilebottnawi, jhnns, sokra, ...1 more
npm/[email protected] None 0 91.3 kB guybedford
npm/[email protected] filesystem 0 12.4 kB lukeed
npm/[email protected] filesystem 0 53.1 kB ota-meshi
npm/[email protected] None 0 20.8 kB lydell
npm/[email protected] None 0 52.6 kB jounqin
npm/[email protected] None 0 409 kB eslint-community-bot
npm/[email protected] None +1 790 kB jounqin
npm/[email protected] None 0 350 kB aaronabramov, jeysal, jsonp, ...6 more
npm/[email protected] filesystem +1 2.1 MB gajus
npm/[email protected] None 0 461 kB eslint-community-bot, weiran.zsd
npm/[email protected] None 0 34.3 kB jounqin
npm/[email protected] None 0 96.6 kB eslint-community-bot
npm/[email protected] None 0 152 kB eslintbot
npm/[email protected] None 0 36.1 kB eslintbot
npm/[email protected] environment Transitive: filesystem +6 3.42 MB eslintbot
npm/[email protected] filesystem 0 98.4 kB mrmlnc
npm/[email protected] filesystem 0 16 kB jaredwray
npm/[email protected] filesystem 0 29.3 kB jaredwray
npm/[email protected] filesystem 0 105 kB hirokiosame
npm/[email protected] None 0 11.8 kB sunset_techuila
npm/[email protected] None 0 245 kB jsdoc-type-pratt-parser
npm/[email protected] None 0 32.3 kB mathias
npm/[email protected] None 0 6.72 kB styfle
npm/[email protected] None 0 37.2 kB chicoxyzzy
npm/[email protected] None 0 39.1 kB tomeraberbach
npm/[email protected] None 0 6.37 kB alexeyraspopov
npm/[email protected] None 0 15 kB hirokiosame
npm/[email protected] None 0 26 kB chrisackerman
npm/[email protected] None 0 5.46 kB quietshu
npm/[email protected] environment 0 59.8 kB jounqin
npm/[email protected] None 0 46.9 kB sokra
npm/[email protected] None 0 353 kB joshuakgoldberg
npm/[email protected] None 0 103 kB jameshenry
npm/[email protected] None 0 14.7 kB ai

🚮 Removed packages: npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@es-joy/[email protected], npm/@eslint-community/[email protected], npm/@eslint-community/[email protected], npm/@eslint/[email protected], npm/@eslint/[email protected], npm/@humanwhocodes/[email protected], npm/@humanwhocodes/[email protected], npm/@metamask/[email protected], npm/@metamask/[email protected], npm/@metamask/[email protected], npm/@metamask/[email protected], npm/@metamask/[email protected], npm/@metamask/[email protected], npm/@types/[email protected], npm/@typescript-eslint/[email protected], npm/@typescript-eslint/[email protected], npm/@typescript-eslint/[email protected], npm/@typescript-eslint/[email protected], npm/@typescript-eslint/[email protected], npm/@typescript-eslint/[email protected], npm/@typescript-eslint/[email protected], npm/@typescript-eslint/[email protected], npm/@ungap/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected]

View full report↗︎

socket-security[bot] avatar Sep 24 '24 11:09 socket-security[bot]

👍 Dependency issues cleared. Learn more about Socket for GitHub ↗︎

This PR previously contained dependency changes with security issues that have been resolved, removed, or ignored.

Ignoring: npm/@nolyfill/[email protected]

View full report↗︎

Next steps

Take a deeper look at the dependency

Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support [AT] socket [DOT] dev.

Remove the package

If you happen to install a dependency that Socket reports as Known Malware you should immediately remove it and select a different dependency. For other alert types, you may may wish to investigate alternative packages or consider if there are other ways to mitigate the specific risk posed by the dependency.

Mark a package as acceptable risk

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of ecosystem/package-name@version specifiers. e.g. @SocketSecurity ignore npm/[email protected] or ignore all packages with @SocketSecurity ignore-all

socket-security[bot] avatar Sep 24 '24 11:09 socket-security[bot]

Updated to latest stable release of @metamask/eslint-config and friends. The lint pipeline now works but tests are failing.

mcmire avatar Dec 04 '24 21:12 mcmire

@SocketSecurity ignore npm/@nolyfill/[email protected]

This is coming from eslint-import-resolver-typescript, which @metamask/eslint-config-typescript requires. We can't really control this.

mcmire avatar Dec 04 '24 21:12 mcmire