chore: npm run format (#106)

* chore: npm run format

* fix .eslint-doc-generatorrc.js

.eslint-doc-generatorrc.js

@@ -1,5 +1,5 @@
 const { format } = require('prettier');
-const { prettier: prettierRC } = require('./.prettierrc.json');
+const prettierRC = require('./.prettierrc.json');
 
 /** @type {import('eslint-doc-generator').GenerateOptions} */
 const config = {

.eslintrc

@@ -1,9 +1,5 @@
 {
-  "extends": [
-    "eslint:recommended",
-    "prettier",
-    "plugin:eslint-plugin/recommended"
-  ],
+  "extends": ["eslint:recommended", "prettier", "plugin:eslint-plugin/recommended"],
   "parserOptions": {
     "ecmaVersion": "latest"
   },
@@ -17,11 +13,10 @@
     "eslint-plugin/require-meta-docs-url": [
       "error",
       {
-        "pattern":
-          "https://github.com/eslint-community/eslint-plugin-security/blob/main/docs/rules/{{name}}.md",
-      },
+        "pattern": "https://github.com/eslint-community/eslint-plugin-security/blob/main/docs/rules/{{name}}.md"
+      }
     ],
     "eslint-plugin/require-meta-schema": "off", // TODO: enable
-    "eslint-plugin/require-meta-type": "off"// TODO: enable
+    "eslint-plugin/require-meta-type": "off" // TODO: enable
   }
 }

.markdownlint.json

@@ -1,4 +1,4 @@
 {
   "line-length": false,
-  "no-inline-html": { "allowed_elements": ["kbd"]}
+  "no-inline-html": { "allowed_elements": ["kbd"] }
 }

CHANGELOG.md

@@ -2,7 +2,7 @@
 
 - 1.5.0
 - Fix avoid crash when exec() is passed no arguments
-  Closes [#82](https://github.com/nodesecurity/eslint-plugin-security/pull/82) with ref as [#23](https://github.com/nodesecurity/eslint-plugin-security/pull/23) 
+  Closes [#82](https://github.com/nodesecurity/eslint-plugin-security/pull/82) with ref as [#23](https://github.com/nodesecurity/eslint-plugin-security/pull/23)
 - Fix incorrect method name in detect-buffer-noassert
   Closes [#63](https://github.com/nodesecurity/eslint-plugin-security/pull/63) and [#80](https://github.com/nodesecurity/eslint-plugin-security/pull/80)
 - Clean up source code formatting
@@ -17,8 +17,8 @@
 - Fix linting errors and step
   [Lint errors](https://github.com/nodesecurity/eslint-plugin-security/commit/1258118c2d07722e9fb388a672b287bb43bc73b3), [Lint step](https://github.com/nodesecurity/eslint-plugin-security/commit/84f3ed3ab88427753c7ac047d0bccbe557f28aa5)
 - Create workflows
-  Check commit message on pull requests, Set up ci on main branch  
-- Update test and lint commands to work cross-platform 
+  Check commit message on pull requests, Set up ci on main branch
+- Update test and lint commands to work cross-platform
   [Commit](https://github.com/nodesecurity/eslint-plugin-security/commit/d3d8e7a27894aa3f83b560f530eb49750e9ee19a)
 - Merge pull request [#47](https://github.com/nodesecurity/eslint-plugin-security/pull/47) from pdehaan/add-docs
   Add old liftsecurity blog posts to docs/ folder

docs/rules/detect-bidi-characters.md

@@ -17,10 +17,10 @@ As an example, take the following code where `RLO`, `LRI`, `PDI`, `IRI` are plac
 ```js
 #!/usr/bin/env node
 
-var accessLevel = "user";
+var accessLevel = 'user';
 
-if (accessLevel != "userRLO LRI// Check if adminPDI IRI") {
-  console.log("You are an admin.");
+if (accessLevel != 'userRLO LRI// Check if adminPDI IRI') {
+  console.log('You are an admin.');
 }
 ```
 
@@ -29,11 +29,11 @@ The code above, will be rendered by a text editor as follows:
 ```js
 #!/usr/bin/env node
 
-var accessLevel = "user";
+var accessLevel = 'user';
 
-if (accessLevel != "user") {
+if (accessLevel != 'user') {
   // Check if admin
-  console.log("You are an admin.");
+  console.log('You are an admin.');
 }
 ```
 

package.json

@@ -6,7 +6,7 @@
   "scripts": {
     "changelog": "changelog eslint-plugin-security all > CHANGELOG.md",
     "cont-int": "npm test && npm run lint",
-    "format": "prettier --write **/*.{md,js,yml}",
+    "format": "prettier --write .",
     "lint": "npm-run-all \"lint:*\"",
     "lint:docs": "markdownlint \"**/*.md\"",
     "lint:eslint-docs": "npm run update:eslint-docs -- --check",

test/detect-disable-mustache-escape.js

@@ -10,7 +10,7 @@ tester.run(ruleName, require(`../rules/${ruleName}`), {
   invalid: [
     {
       code: 'a.escapeMarkup = false',
-      errors: [{ message: 'Markup escaping disabled.' }]
-    }
-  ]
+      errors: [{ message: 'Markup escaping disabled.' }],
+    },
+  ],
 });

test/detect-eval-with-expression.js

@@ -6,11 +6,11 @@ const tester = new RuleTester();
 const ruleName = 'detect-eval-with-expression';
 
 tester.run(ruleName, require(`../rules/${ruleName}`), {
-  valid: [{ code: 'eval(\'alert()\')' }],
+  valid: [{ code: "eval('alert()')" }],
   invalid: [
     {
       code: 'eval(a);',
-      errors: [{ message: 'eval with argument of type Identifier' }]
-    }
-  ]
+      errors: [{ message: 'eval with argument of type Identifier' }],
+    },
+  ],
 });

test/detect-new-buffer.js

@@ -7,11 +7,11 @@ const ruleName = 'detect-new-buffer';
 const invalid = 'var a = new Buffer(c)';
 
 tester.run(ruleName, require(`../rules/${ruleName}`), {
-  valid: [{ code: 'var a = new Buffer(\'test\')' }],
+  valid: [{ code: "var a = new Buffer('test')" }],
   invalid: [
     {
       code: invalid,
-      errors: [{ message: 'Found new Buffer' }]
-    }
-  ]
+      errors: [{ message: 'Found new Buffer' }],
+    },
+  ],
 });

test/detect-no-csrf-before-method-override.js

@@ -10,7 +10,7 @@ tester.run(ruleName, require(`../rules/${ruleName}`), {
   invalid: [
     {
       code: 'express.csrf();express.methodOverride()',
-      errors: [{ message: 'express.csrf() middleware found before express.methodOverride()' }]
-    }
-  ]
+      errors: [{ message: 'express.csrf() middleware found before express.methodOverride()' }],
+    },
+  ],
 });

test/detect-non-literal-regexp.js

@@ -4,14 +4,14 @@ const RuleTester = require('eslint').RuleTester;
 const tester = new RuleTester();
 
 const ruleName = 'detect-non-literal-regexp';
-const invalid = 'var a = new RegExp(c, \'i\')';
+const invalid = "var a = new RegExp(c, 'i')";
 
 tester.run(ruleName, require(`../rules/${ruleName}`), {
-  valid: [{ code: 'var a = new RegExp(\'ab+c\', \'i\')' }],
+  valid: [{ code: "var a = new RegExp('ab+c', 'i')" }],
   invalid: [
     {
       code: invalid,
-      errors: [{ message: 'Found non-literal argument to RegExp Constructor' }]
-    }
-  ]
+      errors: [{ message: 'Found non-literal argument to RegExp Constructor' }],
+    },
+  ],
 });

test/detect-non-literal-require.js

@@ -7,15 +7,15 @@ const tester = new RuleTester({ parserOptions: { ecmaVersion: 6 } });
 const ruleName = 'detect-non-literal-require';
 
 tester.run(ruleName, require(`../rules/${ruleName}`), {
-  valid: [{ code: 'var a = require(\'b\')' }, { code: 'var a = require(`b`)' }],
+  valid: [{ code: "var a = require('b')" }, { code: 'var a = require(`b`)' }],
   invalid: [
     {
       code: 'var a = require(c)',
-      errors: [{ message: 'Found non-literal argument in require' }]
+      errors: [{ message: 'Found non-literal argument in require' }],
     },
     {
       code: 'var a = require(`${c}`)',
-      errors: [{ message: 'Found non-literal argument in require' }]
-    }
-  ]
+      errors: [{ message: 'Found non-literal argument in require' }],
+    },
+  ],
 });

test/detect-object-injection.js

@@ -39,7 +39,7 @@ tester.run(`${ruleName} (Generic)`, Rule, {
   invalid: [
     {
       code: invalidGeneric,
-      errors: [{ message: 'Generic Object Injection Sink' }]
-    }
-  ]
+      errors: [{ message: 'Generic Object Injection Sink' }],
+    },
+  ],
 });

test/detect-possible-timing-attacks.js

@@ -7,8 +7,8 @@ const ruleName = 'detect-possible-timing-attacks';
 const Rule = require(`../rules/${ruleName}`);
 
 const valid = 'if (age === 5) {}';
-const invalidLeft = 'if (password === \'mypass\') {}';
-const invalidRigth = 'if (\'mypass\' === password) {}';
+const invalidLeft = "if (password === 'mypass') {}";
+const invalidRigth = "if ('mypass' === password) {}";
 
 // We only check with one string "password" and operator "==="
 // to KISS.
@@ -18,17 +18,17 @@ tester.run(`${ruleName} (left side)`, Rule, {
   invalid: [
     {
       code: invalidLeft,
-      errors: [{ message: 'Potential timing attack, left side: true' }]
-    }
-  ]
+      errors: [{ message: 'Potential timing attack, left side: true' }],
+    },
+  ],
 });
 
 tester.run(`${ruleName} (right side)`, Rule, {
   valid: [{ code: valid }],
   invalid: [
     {
       code: invalidRigth,
-      errors: [{ message: 'Potential timing attack, right side: true' }]
-    }
-  ]
+      errors: [{ message: 'Potential timing attack, right side: true' }],
+    },
+  ],
 });

test/detect-pseudoRandomBytes.js

@@ -11,7 +11,7 @@ tester.run(ruleName, require(`../rules/${ruleName}`), {
   invalid: [
     {
       code: invalid,
-      errors: [{ message: 'Found crypto.pseudoRandomBytes which does not produce cryptographically strong numbers' }]
-    }
-  ]
+      errors: [{ message: 'Found crypto.pseudoRandomBytes which does not produce cryptographically strong numbers' }],
+    },
+  ],
 });

test/detect-unsafe-regexp.js

@@ -11,17 +11,17 @@ tester.run(ruleName, Rule, {
   invalid: [
     {
       code: '/(x+x+)+y/',
-      errors: [{ message: 'Unsafe Regular Expression' }]
-    }
-  ]
+      errors: [{ message: 'Unsafe Regular Expression' }],
+    },
+  ],
 });
 
 tester.run(`${ruleName} (new RegExp)`, Rule, {
-  valid: [{ code: 'new RegExp(\'^d+1337d+$\')' }],
+  valid: [{ code: "new RegExp('^d+1337d+$')" }],
   invalid: [
     {
-      code: 'new RegExp(\'x+x+)+y\')',
-      errors: [{ message: 'Unsafe Regular Expression (new RegExp)' }]
-    }
-  ]
+      code: "new RegExp('x+x+)+y')",
+      errors: [{ message: 'Unsafe Regular Expression (new RegExp)' }],
+    },
+  ],
 });