UNPKG

eslint-plugin-code-quality-rules

Version:

code-quality-rules

125 lines (118 loc) 3.17 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
module.exports = { meta: { type: 'suggestion', docs: { description: 'enforce a maximum depth that blocks can be nested', category: 'Stylistic Issues', recommended: false, url: 'https://eslint.org/docs/rules/max-depth', }, schema: [ { oneOf: [ { type: 'integer', minimum: 0, }, { type: 'object', properties: { maximum: { type: 'integer', minimum: 0, }, max: { type: 'integer', minimum: 0, }, }, additionalProperties: false, }, ], }, ], messages: { danger: 'There are potential risks, {{tips}} ', }, }, create(context) { const sourceCode = context.getSourceCode(); const INNER_HTML = /\.innerHtml/; function hasInnerHtml(text) { return INNER_HTML.test(text); } function hasAttribute(node, elem, attr) { const { name, attributes } = node; if (elem === name.name && attributes && Array.isArray(attributes)) { let containes = false; attributes.forEach((att) => { if (att.name) { containes = att.name.name === attr; } }); return containes; } return false; } function withoutSandbox(node) { const { name, attributes } = node; if (name.name === 'iframe' && attributes && Array.isArray(attributes)) { let containes = false; attributes.forEach((att) => { containes = att.name.name === 'sandbox'; }); return !containes; } return false; } return { AssignmentExpression(node) { const text = sourceCode.getText(node); if (hasInnerHtml(text)) { context.report({ node, messageId: 'danger', data: { tips: 'no use \'innerHtml\'', }, }); } }, JSXOpeningElement(node) { if (hasAttribute(node, 'div', 'dangerouslySetInnerHTML')) { context.report({ node, messageId: 'danger', data: { tips: 'no use attribute \'dangerouslySetInnerHTML\'', }, }); } else if (withoutSandbox(node)) { context.report({ node, messageId: 'danger', data: { tips: 'must use \'sandbox\' attribute in \'iframe\'', }, }); } }, CallExpression(node) { const { callee } = node; const callText = sourceCode.getText(callee); if (callText.endsWith('postMessage') && node.arguments && Array.isArray(node.arguments)) { if (node.arguments.length >= 2 && node.arguments[1].value === '*') { // found context.report({ node, messageId: 'danger', data: { tips: 'origin parameter can not empty', }, }); } } }, }; }, };