npm - @cloudalgo/eslint-plugin-apex - Versions diffs - 0.1.7 → 0.1.9 - Mend

@cloudalgo/eslint-plugin-apex 0.1.7 → 0.1.9

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (2) hide show

package/README.md +164 -0
package/package.json +5 -4

package/README.md ADDED Viewed

@@ -0,0 +1,164 @@
+# @cloudalgo/eslint-plugin-apex
+ESLint plugin for Salesforce Apex. Bundles 41 static analysis rules — SOQL/DML in loops, governor-limit violations, taint-tracked security issues, complexity, and best practices — and a custom Apex parser so the whole setup is one dependency.
+Compatible with ESLint v8 (legacy config) and ESLint v9 (flat config).
+---
+## Install
+```bash
+npm install --save-dev @cloudalgo/eslint-plugin-apex eslint
+```
+---
+## Setup — ESLint v9 (flat config)
+```js
+// eslint.config.js
+import apex from "@cloudalgo/eslint-plugin-apex";
+export default [
+  // recommended: all 41 rules, critical/high → error, others → warn
+  ...apex.flatConfigs.recommended,
+];
+```
+With a metadata root for type-aware rules (e.g. `UnguardedCrudOperation`):
+```js
+// eslint.config.js
+import apex from "@cloudalgo/eslint-plugin-apex";
+export default [
+  {
+    files: ["**/*.cls", "**/*.trigger"],
+    languageOptions: {
+      parser: apex.parser,
+    },
+    plugins: { apex: { rules: apex.rules } },
+    settings: {
+      "apex/metadataRoot": "./force-app/main/default",
+    },
+    rules: {
+      "apex/SoqlInLoop": "error",
+      "apex/DmlInLoop": "error",
+      "apex/ApexSOQLInjection": "error",
+      "apex/UnguardedCrudOperation": "warn",
+    },
+  },
+];
+```
+## Setup — ESLint v8 (legacy .eslintrc)
+```json
+{
+  "extends": ["plugin:apex/recommended"],
+  "settings": {
+    "apexMetadataRoot": "./force-app/main/default"
+  }
+}
+```
+---
+## Rules (41)
+### Security (10)
+| Rule | Default |
+|------|---------|
+| `apex/ApexSOQLInjection` | error |
+| `apex/ApexOpenRedirect` | error |
+| `apex/ApexSSRF` | error |
+| `apex/ApexXSSFromURLParam` | error |
+| `apex/ApexXSSFromEscapeFalse` | error |
+| `apex/ApexBadCrypto` | error |
+| `apex/ApexSharingViolations` | error |
+| `apex/DatabaseQueryWithVariable` | error |
+| `apex/UnguardedCrudOperation` | error |
+| `apex/ApexCSRF` | warn |
+### Performance (6)
+| Rule | Default |
+|------|---------|
+| `apex/SoqlInLoop` | error |
+| `apex/DmlInLoop` | error |
+| `apex/HttpCalloutInLoop` | error |
+| `apex/SoqlInBatchExecute` | warn |
+| `apex/AvoidNonRestrictiveQueries` | warn |
+| `apex/SystemDebugInLoop` | warn |
+### Error-Prone (6)
+| Rule | Default |
+|------|---------|
+| `apex/InaccessibleAuraEnabledGetter` | error |
+| `apex/TestMethodsMustBeInTestClasses` | error |
+| `apex/FutureMethodChaining` | error |
+| `apex/EmptyCatchBlock` | warn |
+| `apex/OverrideBothEqualsAndHashcode` | warn |
+| `apex/AvoidHardcodedId` | warn |
+### Design (8)
+| Rule | Default |
+|------|---------|
+| `apex/TriggerInlineLogic` | warn |
+| `apex/CyclomaticComplexity` | warn |
+| `apex/CognitiveComplexity` | warn |
+| `apex/AvoidDeeplyNestedIfStmts` | warn |
+| `apex/ExcessiveParameterList` | warn |
+| `apex/ExcessivePublicCount` | warn |
+| `apex/TooManyFields` | warn |
+| `apex/UnusedPrivateMethod` | warn |
+### Best Practices (10)
+| Rule | Default |
+|------|---------|
+| `apex/TestWithoutAsserts` | warn |
+| `apex/SeeAllDataTrue` | warn |
+| `apex/HardcodedUrl` | warn |
+| `apex/QueueableWithoutFinalizer` | warn |
+| `apex/AvoidGlobalModifier` | warn |
+| `apex/AvoidFutureAnnotation` | warn |
+| `apex/DebugsShouldUseLoggingLevel` | warn |
+| `apex/ApexAssertionsShouldIncludeMessage` | warn |
+| `apex/ApexUnitTestMethodShouldHaveIsTestAnnotation` | warn |
+| `apex/ApexUnitTestClassShouldHaveRunAs` | warn |
+### Code Style (1)
+| Rule | Default |
+|------|---------|
+| `apex/MethodNamingConventions` | warn |
+---
+## Suppression
+Standard ESLint inline suppression works:
+```apex
+// eslint-disable-next-line apex/SoqlInLoop
+[SELECT Id FROM Account WHERE Id IN :ids];
+```
+PMD-style suppression (`// NOPMD`) is also supported via the underlying `@cloudalgo/apex-core` engine.
+---
+## VS Code integration
+Install the ESLint VS Code extension. With this plugin configured, Apex lint errors appear inline in the editor on save.
+---
+## Prefer the CLI?
+[`@cloudalgo/apex-lint`](https://www.npmjs.com/package/@cloudalgo/apex-lint) runs the same 41 rules without requiring an ESLint setup — useful for CI scripts, pre-commit hooks, and editors without ESLint integration.
+---
+## Repository
+[github.com/cloudalgo/apex-lint](https://github.com/cloudalgo/apex-lint) · License: BSD-3-Clause

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@cloudalgo/eslint-plugin-apex",
-  "version": "0.1.7",
+  "version": "0.1.9",
   "description": "ESLint plugin for Salesforce Apex — 15 rules for SOQL injection, governor limits, security and code quality",
   "type": "module",
   "main": "dist/index.js",
@@ -9,11 +9,12 @@
     ".": "./dist/index.js"
   },
   "files": [
-    "dist"
+    "dist",
+    "README.md"
   ],
   "dependencies": {
-    "@cloudalgo/eslint-parser-apex": "0.1.7",
-    "@cloudalgo/apex-core": "0.1.7"
+    "@cloudalgo/apex-core": "0.1.9",
+    "@cloudalgo/eslint-parser-apex": "0.1.9"
   },
   "peerDependencies": {
     "eslint": ">=8.0.0"