Skip to content

Simplesense Config v6.0.9

Main Navigation Releases

Appearance

Sidebar Navigation

ESLint Comments v4.4.1

disable-enable-pair

no-aggregating-enable

no-duplicate-disable

no-unlimited-disable

no-unused-enable

ESLint Stylistic v4.0.0

array-bracket-newline

array-bracket-spacing

array-element-newline

arrow-parens

arrow-spacing

block-spacing

brace-style

comma-dangle

comma-spacing

comma-style

computed-property-spacing

dot-location

eol-last

func-call-spacing

function-call-argument-newline

function-paren-newline

generator-star-spacing

implicit-arrow-linebreak

indent

key-spacing

keyword-spacing

linebreak-style

lines-between-class-members

max-len

multiline-comment-style

new-parens

newline-per-chained-call

no-confusing-arrow

no-extra-semi

no-floating-decimal

no-mixed-operators

no-mixed-spaces-and-tabs

no-multi-spaces

no-multiple-empty-lines

no-tabs

no-trailing-spaces

no-whitespace-before-property

nonblock-statement-body-position

object-curly-newline

object-curly-spacing

object-property-newline

one-var-declaration-per-line

operator-linebreak

padded-blocks

padding-line-between-statements

quote-props

quotes

rest-spread-spacing

semi

semi-spacing

semi-style

space-before-blocks

space-before-function-paren

space-in-parens

space-infix-ops

space-unary-ops

spaced-comment

switch-colon-spacing

template-curly-spacing

template-tag-spacing

wrap-regex

yield-star-spacing

Array Function v5.0.2

avoid-reverse

no-unnecessary-this-arg

prefer-flat

prefer-flat-map

ESLint Recommended v9.20.1

accessor-pairs

array-callback-return

block-scoped-var

camelcase

consistent-return

constructor-super

curly

default-case

default-case-last

dot-notation

eqeqeq

for-direction

getter-return

grouped-accessor-pairs

guard-for-in

new-cap

no-alert

no-array-constructor

no-async-promise-executor

no-caller

no-case-declarations

no-class-assign

no-compare-neg-zero

no-cond-assign

no-const-assign

no-constant-binary-expression

no-constant-condition

no-constructor-return

no-continue

no-control-regex

no-debugger

no-delete-var

no-dupe-args

no-dupe-class-members

no-dupe-else-if

no-dupe-keys

no-duplicate-case

no-duplicate-imports

no-else-return

no-empty

no-empty-character-class

no-empty-function

no-empty-pattern

no-empty-static-block

no-eq-null

no-eval

no-ex-assign

no-extend-native

no-extra-bind

no-extra-boolean-cast

no-fallthrough

no-func-assign

no-global-assign

no-implicit-coercion

no-implicit-globals

no-implied-eval

no-import-assign

no-inner-declarations

no-invalid-regexp

no-invalid-this

no-irregular-whitespace

no-iterator

no-labels

no-lone-blocks

no-lonely-if

no-loss-of-precision

no-misleading-character-class

no-multi-assign

no-multi-str

no-new

no-new-func

no-new-native-nonconstructor

no-new-wrappers

no-nonoctal-decimal-escape

no-obj-calls

no-object-constructor

no-octal

no-octal-escape

no-promise-executor-return

no-proto

no-prototype-builtins

no-redeclare

no-regex-spaces

no-return-assign

no-script-url

no-self-assign

no-self-compare

no-sequences

no-setter-return

no-shadow

no-shadow-restricted-names

no-sparse-arrays

no-template-curly-in-string

no-this-before-super

no-throw-literal

no-undef

no-undef-init

no-underscore-dangle

no-unexpected-multiline

no-unneeded-ternary

no-unreachable

no-unreachable-loop

no-unsafe-finally

no-unsafe-negation

no-unsafe-optional-chaining

no-unused-expressions

no-unused-labels

no-unused-private-class-members

no-unused-vars

no-use-before-define

no-useless-backreference

no-useless-call

no-useless-catch

no-useless-computed-key

no-useless-concat

no-useless-constructor

no-useless-escape

no-useless-rename

no-useless-return

no-var

no-void

no-warning-comments

no-with

object-shorthand

one-var

prefer-arrow-callback

prefer-const

prefer-exponentiation-operator

prefer-object-has-own

prefer-object-spread

prefer-promise-reject-errors

prefer-regex-literals

prefer-rest-params

prefer-spread

prefer-template

radix

require-unicode-regexp

require-yield

sort-imports

sort-vars

spaced-comment

symbol-description

use-isnan

valid-typeof

yoda

Import v2.31.0

default

export

exports-last

extensions

first

group-exports

named

namespace

no-amd

no-anonymous-default-export

no-commonjs

no-cycle

no-deprecated

no-duplicates

no-dynamic-require

no-empty-named-blocks

no-extraneous-dependencies

no-import-module-exports

no-mutable-exports

no-named-as-default-member

no-named-default

no-self-import

no-unassigned-import

no-unresolved

no-useless-path-segments

order

prefer-default-export

Node v17.15.1

callback-return

file-extension-in-import

handle-callback-err

no-deprecated-api

no-extraneous-import

no-missing-import

no-path-concat

no-sync

no-unpublished-bin

no-unpublished-import

es-builtins

es-syntax

node-builtins

buffer

console

process

text-decoder

text-encoder

url

url-search-params

prefer-node-protocol

dns

fs

Optimize Regex v1.2.1

optimize-regex

RegExp v2.7.0

confusing-quantifier

control-character-escape

match-any

negation

no-contradiction-with-assertion

no-dupe-characters-character-class

no-dupe-disjunctions

no-empty-alternative

no-empty-capturing-group

no-empty-character-class

no-empty-group

no-empty-lookarounds-assertion

no-empty-string-literal

no-escape-backspace

no-extra-lookaround-assertions

no-invalid-regexp

no-invisible-character

no-lazy-ends

no-legacy-features

no-misleading-capturing-group

no-misleading-unicode-character

no-missing-g-flag

no-non-standard-flag

no-obscure-range

no-optional-assertion

no-potentially-useless-backreference

no-super-linear-backtracking

no-trivially-nested-assertion

no-trivially-nested-quantifier

no-unused-capturing-group

no-useless-assertions

no-useless-backreference

no-useless-character-class

no-useless-dollar-replacements

no-useless-escape

no-useless-flag

no-useless-lazy

no-useless-non-capturing-group

no-useless-quantifier

no-useless-range

no-useless-set-operand

no-useless-string-literal

no-useless-two-nums-quantifier

no-zero-quantifier

optimal-lookaround-quantifier

optimal-quantifier-concatenation

prefer-character-class

prefer-d

prefer-plus-quantifier

prefer-predefined-assertion

prefer-question-quantifier

prefer-range

prefer-set-operation

prefer-star-quantifier

prefer-unicode-codepoint-escapes

prefer-w

simplify-set-operations

sort-flags

strict

use-ignore-case

Security v3.0.1

detect-bidi-characters

detect-buffer-noassert

detect-child-process

detect-disable-mustache-escape

detect-eval-with-expression

detect-new-buffer

detect-no-csrf-before-method-override

detect-non-literal-fs-filename

detect-non-literal-regexp

detect-non-literal-require

detect-possible-timing-attacks

detect-pseudoRandomBytes

detect-unsafe-regex

SonarJS v3.0.2

cognitive-complexity

elseif-without-else

max-switch-cases

no-all-duplicated-branches

no-collapsible-if

no-collection-size-mischeck

no-duplicate-string

no-duplicated-branches

no-element-overwrite

no-empty-collection

no-extra-arguments

no-gratuitous-expressions

no-identical-conditions

no-identical-expressions

no-identical-functions

no-ignored-return

no-inverted-boolean-check

no-nested-switch

no-nested-template-literals

no-one-iteration-loop

no-redundant-boolean

no-redundant-jump

no-same-line-conditional

no-small-switch

no-unused-collection

no-use-of-empty-return-value

no-useless-catch

non-existent-operator

prefer-immediate-return

prefer-object-literal

prefer-single-boolean-return

prefer-while

Unicorn v57.0.0

better-regex

catch-error-name

consistent-assert

consistent-date-clone

consistent-empty-array-spread

consistent-function-scoping

custom-error-definition

empty-brace-spaces

error-message

escape-case

filename-case

new-for-builtins

no-abusive-eslint-disable

no-accessor-recursion

no-array-for-each

no-array-method-this-argument

no-array-push-push

no-document-cookie

no-empty-file

no-for-loop

no-hex-escape

no-invalid-fetch-options

no-invalid-remove-event-listener

no-length-as-slice-end

no-magic-array-flat-depth

no-new-array

no-new-buffer

no-process-exit

no-single-promise-in-promise-methods

no-static-only-class

no-thenable

no-this-assignment

no-typeof-undefined

no-unreadable-array-destructuring

no-unreadable-iife

no-unused-properties

no-useless-length-check

no-useless-promise-resolve-reject

no-useless-spread

no-useless-switch-case

no-useless-undefined

no-zero-fractions

number-literal-case

prefer-add-event-listener

prefer-array-find

prefer-array-flat

prefer-array-flat-map

prefer-array-some

prefer-blob-reading-methods

prefer-code-point

prefer-date-now

prefer-dom-node-append

prefer-dom-node-dataset

prefer-dom-node-remove

prefer-dom-node-text-content

prefer-event-target

prefer-export-from

prefer-includes

prefer-keyboard-event-key

prefer-logical-operator-over-ternary

prefer-math-trunc

prefer-modern-dom-apis

prefer-modern-math-apis

prefer-module

prefer-node-protocol

prefer-number-properties

prefer-object-from-entries

prefer-prototype-methods

prefer-query-selector

prefer-reflect-apply

prefer-regexp-test

prefer-set-size

prefer-spread

prefer-string-raw

prefer-string-replace-all

prefer-string-slice

prefer-string-starts-ends-with

prefer-string-trim-start-end

prefer-structured-clone

prefer-switch

prefer-type-error

require-array-join-separator

require-number-to-fixed-digits-argument

require-post-message-target-origin

text-encoding-identifier-case

throw-new-error

VueJS v9.32.0

attribute-hyphenation

comment-directive

component-definition-name-casing

component-name-in-template-casing

first-attribute-linebreak

html-closing-bracket-newline

html-closing-bracket-spacing

html-end-tags

html-indent

html-quotes

html-self-closing

jsx-uses-vars

max-attributes-per-line

multi-word-component-names

multiline-html-element-content-newline

mustache-interpolation-spacing

no-arrow-functions-in-watch

no-async-in-computed-properties

no-child-content

no-computed-properties-in-data

no-custom-modifiers-on-v-model

no-dupe-keys

no-dupe-v-else-if

no-duplicate-attributes

no-export-in-script-setup

no-multi-spaces

no-multiple-template-root

no-mutating-props

no-parsing-error

no-ref-as-operand

no-reserved-component-names

no-reserved-keys

no-reserved-props

no-shared-component-data

no-side-effects-in-computed-properties

no-spaces-around-equal-signs-in-attribute

no-template-key

no-template-shadow

no-textarea-mustache

no-unused-components

no-unused-vars

no-use-computed-property-like-method

no-use-v-if-with-v-for

no-useless-template-attributes

no-v-for-template-key

no-v-model-argument

no-v-text-v-html-on-component

one-component-per-file

prop-name-casing

require-component-is

require-default-prop

require-prop-type-constructor

require-prop-types

require-render-return

require-v-for-key

require-valid-default-prop

return-in-computed-property

return-in-emits-validator

singleline-html-element-content-newline

use-v-on-exact

v-bind-style

v-on-style

v-slot-style

valid-attribute-name

valid-define-emits

valid-define-props

valid-model-definition

valid-next-tick

valid-template-root

valid-v-bind

valid-v-bind-sync

valid-v-cloak

valid-v-else

valid-v-else-if

valid-v-for

valid-v-html

valid-v-if

valid-v-model

valid-v-on

valid-v-once

valid-v-pre

valid-v-show

valid-v-slot

valid-v-text

YAML v1.17.0

block-mapping

block-mapping-question-indicator-newline

block-sequence

block-sequence-hyphen-indicator-newline

file-extension

flow-mapping-curly-newline

flow-mapping-curly-spacing

flow-sequence-bracket-newline

flow-sequence-bracket-spacing

indent

key-spacing

no-empty-document

no-empty-key

no-empty-mapping-value

no-empty-sequence-entry

no-irregular-whitespace

no-tab-indent

plain-scalar

quotes

spaced-comment

no-parsing-error

On this page

Detects Express "csrf" middleware setup before "method-override" middleware (`security/detect-no-csrf-before-method-override`)

⚠️ This rule warns in the ✅ recommended config.

This can allow GET requests (which are not checked by csrf) to turn into POST requests later.

More information: Bypass Connect CSRF protection by abusing methodOverride Middleware

Pager

Previous pagedetect-new-buffer

Next pagedetect-non-literal-fs-filename

Released under the Apache License 2.0.

Copyright © 2021-present Simplesense Inc. All rights reserved.