Security is a big topic when developing node.js applications. A simple helper for writing secure code is the
plugin. It checks for common mistakes during writing code, for example using the eval statement with external input, or unsafe RegEx expressions…To install the plugin, just save it to the project with
npm install --save-dev eslint-plugin-security
To enable it, you need to change the .eslintrc configuration file:
{
"plugins": ["security"],
"extends": [
"plugin:security/recommended",
"rallycoding"
]
}