eslint-plugin-sdl-2 1.0.4

package/dist/rules/no-document-domain.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"no-document-domain.js","sourceRoot":"","sources":["../../src/rules/no-document-domain.ts"],"names":[],"mappings":"AAGA,OAAO,EACH,kBAAkB,EAClB,gBAAgB,GACnB,MAAM,2BAA2B,CAAC;AACnC,OAAO,EAAE,UAAU,EAAE,MAAM,6BAA6B,CAAC;AAEzD,2BAA2B;AAC3B,MAAM,IAAI,GAAkC,UAAU,CAAC;IACnD,MAAM,CAAC,OAAO;QACV,MAAM,eAAe,GAAG,kBAAkB,CAAC,OAAO,CAAC,CAAC;QAEpD,OAAO;YACH,iEAAiE,CAC7D,IAAmC;gBAEnC,IAAI,IAAI,CAAC,IAAI,CAAC,IAAI,KAAK,kBAAkB,EAAE,CAAC;oBACxC,OAAO;gBACX,CAAC;gBAED,IACI,CAAC,gBAAgB,CACb,IAAI,CAAC,IAAI,CAAC,MAAM,EAChB,OAAO,EACP,eAAe,CAClB,EACH,CAAC;oBACC,OAAO;gBACX,CAAC;gBAED,OAAO,CAAC,MAAM,CAAC;oBACX,SAAS,EAAE,SAAS;oBACpB,IAAI;iBACP,CAAC,CAAC;YACP,CAAC;SACJ,CAAC;IACN,CAAC;IACD,cAAc,EAAE,EAAE;IAClB,IAAI,EAAE;QACF,UAAU,EAAE,KAAK;QACjB,IAAI,EAAE;YACF,WAAW,EACP,mFAAmF;YACvF,MAAM,EAAE,KAAK;YACb,WAAW,EAAE,KAAK;YAClB,GAAG,EAAE,gFAAgF;SACxF;QACD,QAAQ,EAAE;YACN,OAAO,EAAE,kCAAkC;SAC9C;QACD,MAAM,EAAE,EAAE;QACV,IAAI,EAAE,SAAS;KAClB;IACD,IAAI,EAAE,oBAAoB;CAC7B,CAAC,CAAC;AAEH,eAAe,IAAI,CAAC;AACpB,iIAAiI"}

package/dist/rules/no-document-execcommand-insert-html.d.ts

@@ -0,0 +1,5 @@
+import { createRule } from "../_internal/create-rule.js";
+/** Rule implementation. */
+declare const rule: ReturnType<typeof createRule>;
+export default rule;
+//# sourceMappingURL=no-document-execcommand-insert-html.d.ts.map

package/dist/rules/no-document-execcommand-insert-html.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"no-document-execcommand-insert-html.d.ts","sourceRoot":"","sources":["../../src/rules/no-document-execcommand-insert-html.ts"],"names":[],"mappings":"AAOA,OAAO,EAAE,UAAU,EAAE,MAAM,6BAA6B,CAAC;AAWzD,2BAA2B;AAC3B,QAAA,MAAM,IAAI,EAAE,UAAU,CAAC,OAAO,UAAU,CAuEtC,CAAC;AAEH,eAAe,IAAI,CAAC"}

package/dist/rules/no-document-execcommand-insert-html.js

@@ -0,0 +1,57 @@
+import { getFullTypeChecker, isDocumentObject, } from "../_internal/ast-utils.js";
+import { createRule } from "../_internal/create-rule.js";
+import { getMemberPropertyName, getStaticStringValue, } from "../_internal/estree-utils.js";
+const isInsertHtmlCommand = (expression) => getStaticStringValue(expression)?.toLowerCase() === "inserthtml";
+/** Rule implementation. */
+const rule = createRule({
+    create(context) {
+        const fullTypeChecker = getFullTypeChecker(context);
+        return {
+            CallExpression(node) {
+                if (node.callee.type !== "MemberExpression") {
+                    return;
+                }
+                if (getMemberPropertyName(node.callee) !== "execCommand") {
+                    return;
+                }
+                if (!isDocumentObject(node.callee.object, context, fullTypeChecker)) {
+                    return;
+                }
+                const [firstArgument, , thirdArgument,] = node.arguments;
+                if (firstArgument === undefined ||
+                    firstArgument.type === "SpreadElement" ||
+                    !isInsertHtmlCommand(firstArgument)) {
+                    return;
+                }
+                if (thirdArgument === undefined ||
+                    thirdArgument.type === "SpreadElement" ||
+                    getStaticStringValue(thirdArgument) === "") {
+                    return;
+                }
+                context.report({
+                    messageId: "default",
+                    node: thirdArgument,
+                });
+            },
+        };
+    },
+    defaultOptions: [],
+    meta: {
+        deprecated: false,
+        docs: {
+            description: "disallow document.execCommand('insertHTML', ...) HTML insertion sinks.",
+            frozen: false,
+            recommended: false,
+            url: "https://nick2bad4u.github.io/eslint-plugin-SDL-2/docs/rules/no-document-execcommand-insert-html",
+        },
+        messages: {
+            default: "Do not inject HTML with document.execCommand('insertHTML', ...); build DOM nodes safely or use text-only insertion APIs instead.",
+        },
+        schema: [],
+        type: "problem",
+    },
+    name: "no-document-execcommand-insert-html",
+});
+export default rule;
+/* eslint-enable @typescript-eslint/prefer-readonly-parameter-types -- Restore linting after rule implementation declarations. */
+//# sourceMappingURL=no-document-execcommand-insert-html.js.map

package/dist/rules/no-document-execcommand-insert-html.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"no-document-execcommand-insert-html.js","sourceRoot":"","sources":["../../src/rules/no-document-execcommand-insert-html.ts"],"names":[],"mappings":"AAGA,OAAO,EACH,kBAAkB,EAClB,gBAAgB,GACnB,MAAM,2BAA2B,CAAC;AACnC,OAAO,EAAE,UAAU,EAAE,MAAM,6BAA6B,CAAC;AACzD,OAAO,EACH,qBAAqB,EACrB,oBAAoB,GACvB,MAAM,8BAA8B,CAAC;AAItC,MAAM,mBAAmB,GAAG,CAAC,UAA+B,EAAW,EAAE,CACrE,oBAAoB,CAAC,UAAU,CAAC,EAAE,WAAW,EAAE,KAAK,YAAY,CAAC;AAErE,2BAA2B;AAC3B,MAAM,IAAI,GAAkC,UAAU,CAAwB;IAC1E,MAAM,CAAC,OAAO;QACV,MAAM,eAAe,GAAG,kBAAkB,CAAC,OAAO,CAAC,CAAC;QAEpD,OAAO;YACH,cAAc,CAAC,IAA6B;gBACxC,IAAI,IAAI,CAAC,MAAM,CAAC,IAAI,KAAK,kBAAkB,EAAE,CAAC;oBAC1C,OAAO;gBACX,CAAC;gBAED,IAAI,qBAAqB,CAAC,IAAI,CAAC,MAAM,CAAC,KAAK,aAAa,EAAE,CAAC;oBACvD,OAAO;gBACX,CAAC;gBAED,IACI,CAAC,gBAAgB,CACb,IAAI,CAAC,MAAM,CAAC,MAAM,EAClB,OAAO,EACP,eAAe,CAClB,EACH,CAAC;oBACC,OAAO;gBACX,CAAC;gBAED,MAAM,CACF,aAAa,EACb,AADc,EAEd,aAAa,EAChB,GAAG,IAAI,CAAC,SAAS,CAAC;gBAEnB,IACI,aAAa,KAAK,SAAS;oBAC3B,aAAa,CAAC,IAAI,KAAK,eAAe;oBACtC,CAAC,mBAAmB,CAAC,aAAa,CAAC,EACrC,CAAC;oBACC,OAAO;gBACX,CAAC;gBAED,IACI,aAAa,KAAK,SAAS;oBAC3B,aAAa,CAAC,IAAI,KAAK,eAAe;oBACtC,oBAAoB,CAAC,aAAa,CAAC,KAAK,EAAE,EAC5C,CAAC;oBACC,OAAO;gBACX,CAAC;gBAED,OAAO,CAAC,MAAM,CAAC;oBACX,SAAS,EAAE,SAAS;oBACpB,IAAI,EAAE,aAAa;iBACtB,CAAC,CAAC;YACP,CAAC;SACJ,CAAC;IACN,CAAC;IACD,cAAc,EAAE,EAAE;IAClB,IAAI,EAAE;QACF,UAAU,EAAE,KAAK;QACjB,IAAI,EAAE;YACF,WAAW,EACP,wEAAwE;YAC5E,MAAM,EAAE,KAAK;YACb,WAAW,EAAE,KAAK;YAClB,GAAG,EAAE,iGAAiG;SACzG;QACD,QAAQ,EAAE;YACN,OAAO,EACH,kIAAkI;SACzI;QACD,MAAM,EAAE,EAAE;QACV,IAAI,EAAE,SAAS;KAClB;IACD,IAAI,EAAE,qCAAqC;CAC9C,CAAC,CAAC;AAEH,eAAe,IAAI,CAAC;AACpB,iIAAiI"}

package/dist/rules/no-document-parse-html-unsafe.d.ts

@@ -0,0 +1,5 @@
+import { createRule } from "../_internal/create-rule.js";
+/** Rule implementation. */
+declare const rule: ReturnType<typeof createRule>;
+export default rule;
+//# sourceMappingURL=no-document-parse-html-unsafe.d.ts.map

package/dist/rules/no-document-parse-html-unsafe.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"no-document-parse-html-unsafe.d.ts","sourceRoot":"","sources":["../../src/rules/no-document-parse-html-unsafe.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,UAAU,EAAE,MAAM,6BAA6B,CAAC;AA6CzD,2BAA2B;AAC3B,QAAA,MAAM,IAAI,EAAE,UAAU,CAAC,OAAO,UAAU,CA2CtC,CAAC;AAEH,eAAe,IAAI,CAAC"}

package/dist/rules/no-document-parse-html-unsafe.js

@@ -0,0 +1,67 @@
+import { createRule } from "../_internal/create-rule.js";
+import { getMemberPropertyName, getStaticStringValue, } from "../_internal/estree-utils.js";
+const isDocumentConstructorReference = (expression) => {
+    if (expression.type === "Identifier") {
+        return expression.name === "Document";
+    }
+    if (expression.type !== "MemberExpression") {
+        return false;
+    }
+    if (getMemberPropertyName(expression) !== "Document") {
+        return false;
+    }
+    return (expression.object.type === "Identifier" &&
+        (expression.object.name === "globalThis" ||
+            expression.object.name === "self" ||
+            expression.object.name === "window"));
+};
+const isDocumentParseHtmlUnsafeCall = (node) => {
+    if (node.callee.type !== "MemberExpression") {
+        return false;
+    }
+    if (getMemberPropertyName(node.callee) !== "parseHTMLUnsafe") {
+        return false;
+    }
+    return isDocumentConstructorReference(node.callee.object);
+};
+/** Rule implementation. */
+const rule = createRule({
+    create(context) {
+        return {
+            CallExpression(node) {
+                if (!isDocumentParseHtmlUnsafeCall(node)) {
+                    return;
+                }
+                const [firstArgument] = node.arguments;
+                if (firstArgument !== undefined &&
+                    firstArgument.type !== "SpreadElement" &&
+                    getStaticStringValue(firstArgument) === "") {
+                    return;
+                }
+                context.report({
+                    messageId: "default",
+                    node: firstArgument ?? node,
+                });
+            },
+        };
+    },
+    defaultOptions: [],
+    meta: {
+        deprecated: false,
+        docs: {
+            description: "disallow Document.parseHTMLUnsafe() because it preserves unsafe HTML unless a reviewed sanitization path is enforced separately.",
+            frozen: false,
+            recommended: false,
+            url: "https://nick2bad4u.github.io/eslint-plugin-SDL-2/docs/rules/no-document-parse-html-unsafe",
+        },
+        messages: {
+            default: "Do not call Document.parseHTMLUnsafe(); prefer Document.parseHTML() or a reviewed sanitization pipeline.",
+        },
+        schema: [],
+        type: "problem",
+    },
+    name: "no-document-parse-html-unsafe",
+});
+export default rule;
+/* eslint-enable @typescript-eslint/prefer-readonly-parameter-types -- Restore linting after rule implementation declarations. */
+//# sourceMappingURL=no-document-parse-html-unsafe.js.map

package/dist/rules/no-document-parse-html-unsafe.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"no-document-parse-html-unsafe.js","sourceRoot":"","sources":["../../src/rules/no-document-parse-html-unsafe.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,UAAU,EAAE,MAAM,6BAA6B,CAAC;AACzD,OAAO,EACH,qBAAqB,EACrB,oBAAoB,GACvB,MAAM,8BAA8B,CAAC;AAItC,MAAM,8BAA8B,GAAG,CACnC,UAA+B,EACxB,EAAE;IACT,IAAI,UAAU,CAAC,IAAI,KAAK,YAAY,EAAE,CAAC;QACnC,OAAO,UAAU,CAAC,IAAI,KAAK,UAAU,CAAC;IAC1C,CAAC;IAED,IAAI,UAAU,CAAC,IAAI,KAAK,kBAAkB,EAAE,CAAC;QACzC,OAAO,KAAK,CAAC;IACjB,CAAC;IAED,IAAI,qBAAqB,CAAC,UAAU,CAAC,KAAK,UAAU,EAAE,CAAC;QACnD,OAAO,KAAK,CAAC;IACjB,CAAC;IAED,OAAO,CACH,UAAU,CAAC,MAAM,CAAC,IAAI,KAAK,YAAY;QACvC,CAAC,UAAU,CAAC,MAAM,CAAC,IAAI,KAAK,YAAY;YACpC,UAAU,CAAC,MAAM,CAAC,IAAI,KAAK,MAAM;YACjC,UAAU,CAAC,MAAM,CAAC,IAAI,KAAK,QAAQ,CAAC,CAC3C,CAAC;AACN,CAAC,CAAC;AAEF,MAAM,6BAA6B,GAAG,CAClC,IAA6B,EACtB,EAAE;IACT,IAAI,IAAI,CAAC,MAAM,CAAC,IAAI,KAAK,kBAAkB,EAAE,CAAC;QAC1C,OAAO,KAAK,CAAC;IACjB,CAAC;IAED,IAAI,qBAAqB,CAAC,IAAI,CAAC,MAAM,CAAC,KAAK,iBAAiB,EAAE,CAAC;QAC3D,OAAO,KAAK,CAAC;IACjB,CAAC;IAED,OAAO,8BAA8B,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;AAC9D,CAAC,CAAC;AAEF,2BAA2B;AAC3B,MAAM,IAAI,GAAkC,UAAU,CAAwB;IAC1E,MAAM,CAAC,OAAO;QACV,OAAO;YACH,cAAc,CAAC,IAA6B;gBACxC,IAAI,CAAC,6BAA6B,CAAC,IAAI,CAAC,EAAE,CAAC;oBACvC,OAAO;gBACX,CAAC;gBAED,MAAM,CAAC,aAAa,CAAC,GAAG,IAAI,CAAC,SAAS,CAAC;gBAEvC,IACI,aAAa,KAAK,SAAS;oBAC3B,aAAa,CAAC,IAAI,KAAK,eAAe;oBACtC,oBAAoB,CAAC,aAAa,CAAC,KAAK,EAAE,EAC5C,CAAC;oBACC,OAAO;gBACX,CAAC;gBAED,OAAO,CAAC,MAAM,CAAC;oBACX,SAAS,EAAE,SAAS;oBACpB,IAAI,EAAE,aAAa,IAAI,IAAI;iBAC9B,CAAC,CAAC;YACP,CAAC;SACJ,CAAC;IACN,CAAC;IACD,cAAc,EAAE,EAAE;IAClB,IAAI,EAAE;QACF,UAAU,EAAE,KAAK;QACjB,IAAI,EAAE;YACF,WAAW,EACP,kIAAkI;YACtI,MAAM,EAAE,KAAK;YACb,WAAW,EAAE,KAAK;YAClB,GAAG,EAAE,2FAA2F;SACnG;QACD,QAAQ,EAAE;YACN,OAAO,EACH,0GAA0G;SACjH;QACD,MAAM,EAAE,EAAE;QACV,IAAI,EAAE,SAAS;KAClB;IACD,IAAI,EAAE,+BAA+B;CACxC,CAAC,CAAC;AAEH,eAAe,IAAI,CAAC;AACpB,iIAAiI"}

package/dist/rules/no-document-write.d.ts

@@ -0,0 +1,5 @@
+import { createRule } from "../_internal/create-rule.js";
+/** Rule implementation. */
+declare const rule: ReturnType<typeof createRule>;
+export default rule;
+//# sourceMappingURL=no-document-write.d.ts.map

package/dist/rules/no-document-write.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"no-document-write.d.ts","sourceRoot":"","sources":["../../src/rules/no-document-write.ts"],"names":[],"mappings":"AAMA,OAAO,EAAE,UAAU,EAAE,MAAM,6BAA6B,CAAC;AAEzD,2BAA2B;AAC3B,QAAA,MAAM,IAAI,EAAE,UAAU,CAAC,OAAO,UAAU,CA+CtC,CAAC;AAEH,eAAe,IAAI,CAAC"}

package/dist/rules/no-document-write.js

@@ -0,0 +1,40 @@
+import { getFullTypeChecker, isDocumentObject, } from "../_internal/ast-utils.js";
+import { createRule } from "../_internal/create-rule.js";
+/** Rule implementation. */
+const rule = createRule({
+    create(context) {
+        const fullTypeChecker = getFullTypeChecker(context);
+        return {
+            "CallExpression[arguments.length=1][callee.property.name=/^(?:write|writeln)$/]"(node) {
+                if (node.callee.type !== "MemberExpression") {
+                    return;
+                }
+                if (!isDocumentObject(node.callee.object, context, fullTypeChecker)) {
+                    return;
+                }
+                context.report({
+                    messageId: "default",
+                    node,
+                });
+            },
+        };
+    },
+    defaultOptions: [],
+    meta: {
+        deprecated: false,
+        docs: {
+            description: "disallow document.write/document.writeln because they bypass safe DOM construction patterns.",
+            frozen: false,
+            recommended: false,
+            url: "https://nick2bad4u.github.io/eslint-plugin-SDL-2/docs/rules/no-document-write",
+        },
+        messages: {
+            default: "Do not write to the DOM directly using document.write/document.writeln.",
+        },
+        schema: [],
+        type: "problem",
+    },
+    name: "no-document-write",
+});
+export default rule;
+//# sourceMappingURL=no-document-write.js.map

package/dist/rules/no-document-write.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"no-document-write.js","sourceRoot":"","sources":["../../src/rules/no-document-write.ts"],"names":[],"mappings":"AAEA,OAAO,EACH,kBAAkB,EAClB,gBAAgB,GACnB,MAAM,2BAA2B,CAAC;AACnC,OAAO,EAAE,UAAU,EAAE,MAAM,6BAA6B,CAAC;AAEzD,2BAA2B;AAC3B,MAAM,IAAI,GAAkC,UAAU,CAAC;IACnD,MAAM,CAAC,OAAO;QACV,MAAM,eAAe,GAAG,kBAAkB,CAAC,OAAO,CAAC,CAAC;QAEpD,OAAO;YACH,gFAAgF,CAC5E,IAA6B;gBAE7B,IAAI,IAAI,CAAC,MAAM,CAAC,IAAI,KAAK,kBAAkB,EAAE,CAAC;oBAC1C,OAAO;gBACX,CAAC;gBAED,IACI,CAAC,gBAAgB,CACb,IAAI,CAAC,MAAM,CAAC,MAAM,EAClB,OAAO,EACP,eAAe,CAClB,EACH,CAAC;oBACC,OAAO;gBACX,CAAC;gBAED,OAAO,CAAC,MAAM,CAAC;oBACX,SAAS,EAAE,SAAS;oBACpB,IAAI;iBACP,CAAC,CAAC;YACP,CAAC;SACJ,CAAC;IACN,CAAC;IACD,cAAc,EAAE,EAAE;IAClB,IAAI,EAAE;QACF,UAAU,EAAE,KAAK;QACjB,IAAI,EAAE;YACF,WAAW,EACP,8FAA8F;YAClG,MAAM,EAAE,KAAK;YACb,WAAW,EAAE,KAAK;YAClB,GAAG,EAAE,+EAA+E;SACvF;QACD,QAAQ,EAAE;YACN,OAAO,EACH,yEAAyE;SAChF;QACD,MAAM,EAAE,EAAE;QACV,IAAI,EAAE,SAAS;KAClB;IACD,IAAI,EAAE,mBAAmB;CAC5B,CAAC,CAAC;AAEH,eAAe,IAAI,CAAC"}

package/dist/rules/no-domparser-html-without-sanitization.d.ts

@@ -0,0 +1,5 @@
+import { createRule } from "../_internal/create-rule.js";
+/** Rule implementation. */
+declare const rule: ReturnType<typeof createRule>;
+export default rule;
+//# sourceMappingURL=no-domparser-html-without-sanitization.d.ts.map

package/dist/rules/no-domparser-html-without-sanitization.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"no-domparser-html-without-sanitization.d.ts","sourceRoot":"","sources":["../../src/rules/no-domparser-html-without-sanitization.ts"],"names":[],"mappings":"AAIA,OAAO,EAAE,UAAU,EAAE,MAAM,6BAA6B,CAAC;AASzD,2BAA2B;AAC3B,QAAA,MAAM,IAAI,EAAE,UAAU,CAAC,OAAO,UAAU,CA4DtC,CAAC;AAEH,eAAe,IAAI,CAAC"}

package/dist/rules/no-domparser-html-without-sanitization.js

@@ -0,0 +1,56 @@
+import { isDefined } from "ts-extras";
+import { createRule } from "../_internal/create-rule.js";
+import { isDomParserParseFromStringCall, isSanitizedExpression, } from "../_internal/domparser.js";
+import { getStaticStringValue } from "../_internal/estree-utils.js";
+/** Rule implementation. */
+const rule = createRule({
+    create(context) {
+        return {
+            CallExpression(node) {
+                if (!isDomParserParseFromStringCall(node)) {
+                    return;
+                }
+                if (node.arguments.length < 2) {
+                    return;
+                }
+                const [firstArgument, secondArgument] = node.arguments;
+                if (!isDefined(firstArgument) || !isDefined(secondArgument)) {
+                    return;
+                }
+                if (firstArgument.type === "SpreadElement" ||
+                    secondArgument.type === "SpreadElement") {
+                    return;
+                }
+                const mimeTypeValue = getStaticStringValue(secondArgument);
+                if (mimeTypeValue !== "text/html") {
+                    return;
+                }
+                if (isSanitizedExpression(firstArgument)) {
+                    return;
+                }
+                context.report({
+                    messageId: "default",
+                    node: firstArgument,
+                });
+            },
+        };
+    },
+    defaultOptions: [],
+    meta: {
+        deprecated: false,
+        docs: {
+            description: "disallow DOMParser.parseFromString(..., 'text/html') calls on unsanitized input.",
+            frozen: false,
+            recommended: false,
+            url: "https://nick2bad4u.github.io/eslint-plugin-SDL-2/docs/rules/no-domparser-html-without-sanitization",
+        },
+        messages: {
+            default: "Sanitize HTML input before parsing with DOMParser.parseFromString(..., 'text/html').",
+        },
+        schema: [],
+        type: "problem",
+    },
+    name: "no-domparser-html-without-sanitization",
+});
+export default rule;
+//# sourceMappingURL=no-domparser-html-without-sanitization.js.map

package/dist/rules/no-domparser-html-without-sanitization.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"no-domparser-html-without-sanitization.js","sourceRoot":"","sources":["../../src/rules/no-domparser-html-without-sanitization.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,SAAS,EAAE,MAAM,WAAW,CAAC;AAEtC,OAAO,EAAE,UAAU,EAAE,MAAM,6BAA6B,CAAC;AACzD,OAAO,EACH,8BAA8B,EAC9B,qBAAqB,GACxB,MAAM,2BAA2B,CAAC;AACnC,OAAO,EAAE,oBAAoB,EAAE,MAAM,8BAA8B,CAAC;AAIpE,2BAA2B;AAC3B,MAAM,IAAI,GAAkC,UAAU,CAAwB;IAC1E,MAAM,CAAC,OAAO;QACV,OAAO;YACH,cAAc,CAAC,IAA6B;gBACxC,IAAI,CAAC,8BAA8B,CAAC,IAAI,CAAC,EAAE,CAAC;oBACxC,OAAO;gBACX,CAAC;gBAED,IAAI,IAAI,CAAC,SAAS,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;oBAC5B,OAAO;gBACX,CAAC;gBAED,MAAM,CAAC,aAAa,EAAE,cAAc,CAAC,GAAG,IAAI,CAAC,SAAS,CAAC;gBAEvD,IAAI,CAAC,SAAS,CAAC,aAAa,CAAC,IAAI,CAAC,SAAS,CAAC,cAAc,CAAC,EAAE,CAAC;oBAC1D,OAAO;gBACX,CAAC;gBAED,IACI,aAAa,CAAC,IAAI,KAAK,eAAe;oBACtC,cAAc,CAAC,IAAI,KAAK,eAAe,EACzC,CAAC;oBACC,OAAO;gBACX,CAAC;gBAED,MAAM,aAAa,GAAG,oBAAoB,CAAC,cAAc,CAAC,CAAC;gBAE3D,IAAI,aAAa,KAAK,WAAW,EAAE,CAAC;oBAChC,OAAO;gBACX,CAAC;gBAED,IAAI,qBAAqB,CAAC,aAAa,CAAC,EAAE,CAAC;oBACvC,OAAO;gBACX,CAAC;gBAED,OAAO,CAAC,MAAM,CAAC;oBACX,SAAS,EAAE,SAAS;oBACpB,IAAI,EAAE,aAAa;iBACtB,CAAC,CAAC;YACP,CAAC;SACJ,CAAC;IACN,CAAC;IACD,cAAc,EAAE,EAAE;IAClB,IAAI,EAAE;QACF,UAAU,EAAE,KAAK;QACjB,IAAI,EAAE;YACF,WAAW,EACP,kFAAkF;YACtF,MAAM,EAAE,KAAK;YACb,WAAW,EAAE,KAAK;YAClB,GAAG,EAAE,oGAAoG;SAC5G;QACD,QAAQ,EAAE;YACN,OAAO,EACH,sFAAsF;SAC7F;QACD,MAAM,EAAE,EAAE;QACV,IAAI,EAAE,SAAS;KAClB;IACD,IAAI,EAAE,wCAAwC;CACjD,CAAC,CAAC;AAEH,eAAe,IAAI,CAAC"}

package/dist/rules/no-domparser-svg-without-sanitization.d.ts

@@ -0,0 +1,5 @@
+import { createRule } from "../_internal/create-rule.js";
+/** Rule implementation. */
+declare const rule: ReturnType<typeof createRule>;
+export default rule;
+//# sourceMappingURL=no-domparser-svg-without-sanitization.d.ts.map

package/dist/rules/no-domparser-svg-without-sanitization.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"no-domparser-svg-without-sanitization.d.ts","sourceRoot":"","sources":["../../src/rules/no-domparser-svg-without-sanitization.ts"],"names":[],"mappings":"AAIA,OAAO,EAAE,UAAU,EAAE,MAAM,6BAA6B,CAAC;AASzD,2BAA2B;AAC3B,QAAA,MAAM,IAAI,EAAE,UAAU,CAAC,OAAO,UAAU,CA4DtC,CAAC;AAEH,eAAe,IAAI,CAAC"}

package/dist/rules/no-domparser-svg-without-sanitization.js

@@ -0,0 +1,56 @@
+import { isDefined } from "ts-extras";
+import { createRule } from "../_internal/create-rule.js";
+import { isDomParserParseFromStringCall, isSanitizedExpression, } from "../_internal/domparser.js";
+import { getStaticStringValue } from "../_internal/estree-utils.js";
+/** Rule implementation. */
+const rule = createRule({
+    create(context) {
+        return {
+            CallExpression(node) {
+                if (!isDomParserParseFromStringCall(node)) {
+                    return;
+                }
+                if (node.arguments.length < 2) {
+                    return;
+                }
+                const [firstArgument, secondArgument] = node.arguments;
+                if (!isDefined(firstArgument) || !isDefined(secondArgument)) {
+                    return;
+                }
+                if (firstArgument.type === "SpreadElement" ||
+                    secondArgument.type === "SpreadElement") {
+                    return;
+                }
+                const mimeTypeValue = getStaticStringValue(secondArgument);
+                if (mimeTypeValue !== "image/svg+xml") {
+                    return;
+                }
+                if (isSanitizedExpression(firstArgument)) {
+                    return;
+                }
+                context.report({
+                    messageId: "default",
+                    node: firstArgument,
+                });
+            },
+        };
+    },
+    defaultOptions: [],
+    meta: {
+        deprecated: false,
+        docs: {
+            description: "disallow DOMParser.parseFromString(..., 'image/svg+xml') calls on unsanitized input.",
+            frozen: false,
+            recommended: false,
+            url: "https://nick2bad4u.github.io/eslint-plugin-SDL-2/docs/rules/no-domparser-svg-without-sanitization",
+        },
+        messages: {
+            default: "Sanitize SVG input before parsing with DOMParser.parseFromString(..., 'image/svg+xml').",
+        },
+        schema: [],
+        type: "problem",
+    },
+    name: "no-domparser-svg-without-sanitization",
+});
+export default rule;
+//# sourceMappingURL=no-domparser-svg-without-sanitization.js.map

package/dist/rules/no-domparser-svg-without-sanitization.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"no-domparser-svg-without-sanitization.js","sourceRoot":"","sources":["../../src/rules/no-domparser-svg-without-sanitization.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,SAAS,EAAE,MAAM,WAAW,CAAC;AAEtC,OAAO,EAAE,UAAU,EAAE,MAAM,6BAA6B,CAAC;AACzD,OAAO,EACH,8BAA8B,EAC9B,qBAAqB,GACxB,MAAM,2BAA2B,CAAC;AACnC,OAAO,EAAE,oBAAoB,EAAE,MAAM,8BAA8B,CAAC;AAIpE,2BAA2B;AAC3B,MAAM,IAAI,GAAkC,UAAU,CAAwB;IAC1E,MAAM,CAAC,OAAO;QACV,OAAO;YACH,cAAc,CAAC,IAA6B;gBACxC,IAAI,CAAC,8BAA8B,CAAC,IAAI,CAAC,EAAE,CAAC;oBACxC,OAAO;gBACX,CAAC;gBAED,IAAI,IAAI,CAAC,SAAS,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;oBAC5B,OAAO;gBACX,CAAC;gBAED,MAAM,CAAC,aAAa,EAAE,cAAc,CAAC,GAAG,IAAI,CAAC,SAAS,CAAC;gBAEvD,IAAI,CAAC,SAAS,CAAC,aAAa,CAAC,IAAI,CAAC,SAAS,CAAC,cAAc,CAAC,EAAE,CAAC;oBAC1D,OAAO;gBACX,CAAC;gBAED,IACI,aAAa,CAAC,IAAI,KAAK,eAAe;oBACtC,cAAc,CAAC,IAAI,KAAK,eAAe,EACzC,CAAC;oBACC,OAAO;gBACX,CAAC;gBAED,MAAM,aAAa,GAAG,oBAAoB,CAAC,cAAc,CAAC,CAAC;gBAE3D,IAAI,aAAa,KAAK,eAAe,EAAE,CAAC;oBACpC,OAAO;gBACX,CAAC;gBAED,IAAI,qBAAqB,CAAC,aAAa,CAAC,EAAE,CAAC;oBACvC,OAAO;gBACX,CAAC;gBAED,OAAO,CAAC,MAAM,CAAC;oBACX,SAAS,EAAE,SAAS;oBACpB,IAAI,EAAE,aAAa;iBACtB,CAAC,CAAC;YACP,CAAC;SACJ,CAAC;IACN,CAAC;IACD,cAAc,EAAE,EAAE;IAClB,IAAI,EAAE;QACF,UAAU,EAAE,KAAK;QACjB,IAAI,EAAE;YACF,WAAW,EACP,sFAAsF;YAC1F,MAAM,EAAE,KAAK;YACb,WAAW,EAAE,KAAK;YAClB,GAAG,EAAE,mGAAmG;SAC3G;QACD,QAAQ,EAAE;YACN,OAAO,EACH,yFAAyF;SAChG;QACD,MAAM,EAAE,EAAE;QACV,IAAI,EAAE,SAAS;KAClB;IACD,IAAI,EAAE,uCAAuC;CAChD,CAAC,CAAC;AAEH,eAAe,IAAI,CAAC"}

package/dist/rules/no-dynamic-import-unsafe-url.d.ts

@@ -0,0 +1,5 @@
+import { createRule } from "../_internal/create-rule.js";
+/** Rule implementation. */
+declare const rule: ReturnType<typeof createRule>;
+export default rule;
+//# sourceMappingURL=no-dynamic-import-unsafe-url.d.ts.map

package/dist/rules/no-dynamic-import-unsafe-url.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"no-dynamic-import-unsafe-url.d.ts","sourceRoot":"","sources":["../../src/rules/no-dynamic-import-unsafe-url.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,UAAU,EAAE,MAAM,6BAA6B,CAAC;AA2BzD,2BAA2B;AAC3B,QAAA,MAAM,IAAI,EAAE,UAAU,CAAC,OAAO,UAAU,CAiCtC,CAAC;AAEH,eAAe,IAAI,CAAC"}

package/dist/rules/no-dynamic-import-unsafe-url.js

@@ -0,0 +1,47 @@
+import { createRule } from "../_internal/create-rule.js";
+import { getStaticStringValue } from "../_internal/estree-utils.js";
+import { isBlobUrl, isDataUrl, isUrlCreateObjectUrlCall, } from "../_internal/worker-code-loading.js";
+const isJavaScriptUrl = (value) => /^\s*javascript\s*:/iu.test(value);
+const isUnsafeDynamicImportSource = (expression) => {
+    const configuredValue = getStaticStringValue(expression);
+    return ((typeof configuredValue === "string" &&
+        (isBlobUrl(configuredValue) ||
+            isDataUrl(configuredValue) ||
+            isJavaScriptUrl(configuredValue))) ||
+        isUrlCreateObjectUrlCall(expression));
+};
+/** Rule implementation. */
+const rule = createRule({
+    create(context) {
+        return {
+            ImportExpression(node) {
+                if (!isUnsafeDynamicImportSource(node.source)) {
+                    return;
+                }
+                context.report({
+                    messageId: "default",
+                    node: node.source,
+                });
+            },
+        };
+    },
+    defaultOptions: [],
+    meta: {
+        deprecated: false,
+        docs: {
+            description: "disallow dynamic import() calls that load code from data:, blob:, javascript:, or direct URL.createObjectURL(...) URLs.",
+            frozen: false,
+            recommended: false,
+            url: "https://nick2bad4u.github.io/eslint-plugin-SDL-2/docs/rules/no-dynamic-import-unsafe-url",
+        },
+        messages: {
+            default: "Do not dynamically import code from data:, blob:, javascript:, or URL.createObjectURL(...) URLs.",
+        },
+        schema: [],
+        type: "problem",
+    },
+    name: "no-dynamic-import-unsafe-url",
+});
+export default rule;
+/* eslint-enable @typescript-eslint/prefer-readonly-parameter-types -- Restore linting after rule implementation declarations. */
+//# sourceMappingURL=no-dynamic-import-unsafe-url.js.map

package/dist/rules/no-dynamic-import-unsafe-url.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"no-dynamic-import-unsafe-url.js","sourceRoot":"","sources":["../../src/rules/no-dynamic-import-unsafe-url.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,UAAU,EAAE,MAAM,6BAA6B,CAAC;AACzD,OAAO,EAAE,oBAAoB,EAAE,MAAM,8BAA8B,CAAC;AACpE,OAAO,EACH,SAAS,EACT,SAAS,EACT,wBAAwB,GAC3B,MAAM,qCAAqC,CAAC;AAI7C,MAAM,eAAe,GAAG,CAAC,KAAa,EAAW,EAAE,CAC/C,sBAAsB,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;AAEvC,MAAM,2BAA2B,GAAG,CAChC,UAAyC,EAClC,EAAE;IACT,MAAM,eAAe,GAAG,oBAAoB,CAAC,UAAU,CAAC,CAAC;IAEzD,OAAO,CACH,CAAC,OAAO,eAAe,KAAK,QAAQ;QAChC,CAAC,SAAS,CAAC,eAAe,CAAC;YACvB,SAAS,CAAC,eAAe,CAAC;YAC1B,eAAe,CAAC,eAAe,CAAC,CAAC,CAAC;QAC1C,wBAAwB,CAAC,UAAU,CAAC,CACvC,CAAC;AACN,CAAC,CAAC;AAEF,2BAA2B;AAC3B,MAAM,IAAI,GAAkC,UAAU,CAAwB;IAC1E,MAAM,CAAC,OAAO;QACV,OAAO;YACH,gBAAgB,CAAC,IAA+B;gBAC5C,IAAI,CAAC,2BAA2B,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;oBAC5C,OAAO;gBACX,CAAC;gBAED,OAAO,CAAC,MAAM,CAAC;oBACX,SAAS,EAAE,SAAS;oBACpB,IAAI,EAAE,IAAI,CAAC,MAAM;iBACpB,CAAC,CAAC;YACP,CAAC;SACJ,CAAC;IACN,CAAC;IACD,cAAc,EAAE,EAAE;IAClB,IAAI,EAAE;QACF,UAAU,EAAE,KAAK;QACjB,IAAI,EAAE;YACF,WAAW,EACP,yHAAyH;YAC7H,MAAM,EAAE,KAAK;YACb,WAAW,EAAE,KAAK;YAClB,GAAG,EAAE,0FAA0F;SAClG;QACD,QAAQ,EAAE;YACN,OAAO,EACH,kGAAkG;SACzG;QACD,MAAM,EAAE,EAAE;QACV,IAAI,EAAE,SAAS;KAClB;IACD,IAAI,EAAE,8BAA8B;CACvC,CAAC,CAAC;AAEH,eAAe,IAAI,CAAC;AACpB,iIAAiI"}

package/dist/rules/no-electron-allow-running-insecure-content.d.ts

@@ -0,0 +1,5 @@
+import { createRule } from "../_internal/create-rule.js";
+/** Rule implementation. */
+declare const rule: ReturnType<typeof createRule>;
+export default rule;
+//# sourceMappingURL=no-electron-allow-running-insecure-content.d.ts.map

package/dist/rules/no-electron-allow-running-insecure-content.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"no-electron-allow-running-insecure-content.d.ts","sourceRoot":"","sources":["../../src/rules/no-electron-allow-running-insecure-content.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,6BAA6B,CAAC;AAKzD,2BAA2B;AAC3B,QAAA,MAAM,IAAI,EAAE,UAAU,CAAC,OAAO,UAAU,CA0BtC,CAAC;AAEH,eAAe,IAAI,CAAC"}

package/dist/rules/no-electron-allow-running-insecure-content.js

@@ -0,0 +1,30 @@
+import { createRule } from "../_internal/create-rule.js";
+import { createElectronWebPreferencesBooleanListener } from "../_internal/electron-web-preferences.js";
+/** Rule implementation. */
+const rule = createRule({
+    create(context) {
+        return createElectronWebPreferencesBooleanListener(context, {
+            disallowedValue: true,
+            preferenceName: "allowRunningInsecureContent",
+        });
+    },
+    defaultOptions: [],
+    meta: {
+        deprecated: false,
+        docs: {
+            description: "disallow enabling allowRunningInsecureContent in Electron webPreferences.",
+            frozen: false,
+            recommended: false,
+            url: "https://nick2bad4u.github.io/eslint-plugin-SDL-2/docs/rules/no-electron-allow-running-insecure-content",
+        },
+        fixable: "code",
+        messages: {
+            default: "Do not set webPreferences.allowRunningInsecureContent to true.",
+        },
+        schema: [],
+        type: "problem",
+    },
+    name: "no-electron-allow-running-insecure-content",
+});
+export default rule;
+//# sourceMappingURL=no-electron-allow-running-insecure-content.js.map

package/dist/rules/no-electron-allow-running-insecure-content.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"no-electron-allow-running-insecure-content.js","sourceRoot":"","sources":["../../src/rules/no-electron-allow-running-insecure-content.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,6BAA6B,CAAC;AACzD,OAAO,EAAE,2CAA2C,EAAE,MAAM,0CAA0C,CAAC;AAIvG,2BAA2B;AAC3B,MAAM,IAAI,GAAkC,UAAU,CAAwB;IAC1E,MAAM,CAAC,OAAO;QACV,OAAO,2CAA2C,CAAC,OAAO,EAAE;YACxD,eAAe,EAAE,IAAI;YACrB,cAAc,EAAE,6BAA6B;SAChD,CAAC,CAAC;IACP,CAAC;IACD,cAAc,EAAE,EAAE;IAClB,IAAI,EAAE;QACF,UAAU,EAAE,KAAK;QACjB,IAAI,EAAE;YACF,WAAW,EACP,2EAA2E;YAC/E,MAAM,EAAE,KAAK;YACb,WAAW,EAAE,KAAK;YAClB,GAAG,EAAE,wGAAwG;SAChH;QACD,OAAO,EAAE,MAAM;QACf,QAAQ,EAAE;YACN,OAAO,EACH,gEAAgE;SACvE;QACD,MAAM,EAAE,EAAE;QACV,IAAI,EAAE,SAAS;KAClB;IACD,IAAI,EAAE,4CAA4C;CACrD,CAAC,CAAC;AAEH,eAAe,IAAI,CAAC"}

package/dist/rules/no-electron-dangerous-blink-features.d.ts

@@ -0,0 +1,5 @@
+import { createRule } from "../_internal/create-rule.js";
+/** Rule implementation. */
+declare const rule: ReturnType<typeof createRule>;
+export default rule;
+//# sourceMappingURL=no-electron-dangerous-blink-features.d.ts.map

package/dist/rules/no-electron-dangerous-blink-features.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"no-electron-dangerous-blink-features.d.ts","sourceRoot":"","sources":["../../src/rules/no-electron-dangerous-blink-features.ts"],"names":[],"mappings":"AAKA,OAAO,EAAE,UAAU,EAAE,MAAM,6BAA6B,CAAC;AA8DzD,2BAA2B;AAC3B,QAAA,MAAM,IAAI,EAAE,UAAU,CAAC,OAAO,UAAU,CA+DtC,CAAC;AAEH,eAAe,IAAI,CAAC"}

package/dist/rules/no-electron-dangerous-blink-features.js

@@ -0,0 +1,89 @@
+import { arrayFirst } from "ts-extras";
+import { createRule } from "../_internal/create-rule.js";
+const getPropertyName = (property) => {
+    if (property.computed) {
+        return undefined;
+    }
+    if (property.key.type === "Identifier") {
+        return property.key.name;
+    }
+    if (property.key.type === "Literal" &&
+        typeof property.key.value === "string") {
+        return property.key.value;
+    }
+    return undefined;
+};
+const getPropertyByName = (objectExpression, propertyName) => {
+    for (const propertyNode of objectExpression.properties) {
+        if (propertyNode.type !== "Property" || propertyNode.kind !== "init") {
+            continue;
+        }
+        if (getPropertyName(propertyNode) === propertyName) {
+            return propertyNode;
+        }
+    }
+    return undefined;
+};
+const getStaticStringValue = (node) => {
+    if (node.type === "Literal" && typeof node.value === "string") {
+        return node.value;
+    }
+    if (node.type === "TemplateLiteral" && node.expressions.length === 0) {
+        return arrayFirst(node.quasis)?.value.cooked ?? undefined;
+    }
+    return undefined;
+};
+const isDangerousBlinkFeaturesValue = (node) => {
+    const staticStringValue = getStaticStringValue(node);
+    if (typeof staticStringValue !== "string") {
+        return false;
+    }
+    return staticStringValue.trim().length > 0;
+};
+/** Rule implementation. */
+const rule = createRule({
+    create(context) {
+        return {
+            "NewExpression[callee.name=/^(?:BrowserWindow|BrowserView)$/]"(node) {
+                const [firstArgument] = node.arguments;
+                if (firstArgument?.type !== "ObjectExpression") {
+                    return;
+                }
+                const webPreferencesProperty = getPropertyByName(firstArgument, "webPreferences");
+                if (webPreferencesProperty?.value.type !== "ObjectExpression") {
+                    return;
+                }
+                const enableBlinkFeaturesProperty = getPropertyByName(webPreferencesProperty.value, "enableBlinkFeatures");
+                if (enableBlinkFeaturesProperty === undefined) {
+                    return;
+                }
+                if (!isDangerousBlinkFeaturesValue(enableBlinkFeaturesProperty.value)) {
+                    return;
+                }
+                context.report({
+                    messageId: "default",
+                    node: enableBlinkFeaturesProperty,
+                });
+            },
+        };
+    },
+    defaultOptions: [],
+    meta: {
+        deprecated: false,
+        docs: {
+            description: "disallow enabling risky Blink runtime features through Electron webPreferences.enableBlinkFeatures.",
+            frozen: false,
+            recommended: false,
+            url: "https://nick2bad4u.github.io/eslint-plugin-SDL-2/docs/rules/no-electron-dangerous-blink-features",
+        },
+        messages: {
+            default: "Do not set webPreferences.enableBlinkFeatures to a non-empty value.",
+        },
+        schema: [],
+        type: "problem",
+    },
+    name: "no-electron-dangerous-blink-features",
+});
+export default rule;
+/* eslint-enable @typescript-eslint/prefer-readonly-parameter-types -- Restore linting after rule implementation declarations. */
+//# sourceMappingURL=no-electron-dangerous-blink-features.js.map

package/dist/rules/no-electron-dangerous-blink-features.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"no-electron-dangerous-blink-features.js","sourceRoot":"","sources":["../../src/rules/no-electron-dangerous-blink-features.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,UAAU,EAAE,MAAM,WAAW,CAAC;AAEvC,OAAO,EAAE,UAAU,EAAE,MAAM,6BAA6B,CAAC;AAIzD,MAAM,eAAe,GAAG,CAAC,QAA2B,EAAsB,EAAE;IACxE,IAAI,QAAQ,CAAC,QAAQ,EAAE,CAAC;QACpB,OAAO,SAAS,CAAC;IACrB,CAAC;IAED,IAAI,QAAQ,CAAC,GAAG,CAAC,IAAI,KAAK,YAAY,EAAE,CAAC;QACrC,OAAO,QAAQ,CAAC,GAAG,CAAC,IAAI,CAAC;IAC7B,CAAC;IAED,IACI,QAAQ,CAAC,GAAG,CAAC,IAAI,KAAK,SAAS;QAC/B,OAAO,QAAQ,CAAC,GAAG,CAAC,KAAK,KAAK,QAAQ,EACxC,CAAC;QACC,OAAO,QAAQ,CAAC,GAAG,CAAC,KAAK,CAAC;IAC9B,CAAC;IAED,OAAO,SAAS,CAAC;AACrB,CAAC,CAAC;AAEF,MAAM,iBAAiB,GAAG,CACtB,gBAA2C,EAC3C,YAAoB,EACS,EAAE;IAC/B,KAAK,MAAM,YAAY,IAAI,gBAAgB,CAAC,UAAU,EAAE,CAAC;QACrD,IAAI,YAAY,CAAC,IAAI,KAAK,UAAU,IAAI,YAAY,CAAC,IAAI,KAAK,MAAM,EAAE,CAAC;YACnE,SAAS;QACb,CAAC;QAED,IAAI,eAAe,CAAC,YAAY,CAAC,KAAK,YAAY,EAAE,CAAC;YACjD,OAAO,YAAY,CAAC;QACxB,CAAC;IACL,CAAC;IAED,OAAO,SAAS,CAAC;AACrB,CAAC,CAAC;AAEF,MAAM,oBAAoB,GAAG,CAAC,IAAmB,EAAsB,EAAE;IACrE,IAAI,IAAI,CAAC,IAAI,KAAK,SAAS,IAAI,OAAO,IAAI,CAAC,KAAK,KAAK,QAAQ,EAAE,CAAC;QAC5D,OAAO,IAAI,CAAC,KAAK,CAAC;IACtB,CAAC;IAED,IAAI,IAAI,CAAC,IAAI,KAAK,iBAAiB,IAAI,IAAI,CAAC,WAAW,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACnE,OAAO,UAAU,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,KAAK,CAAC,MAAM,IAAI,SAAS,CAAC;IAC9D,CAAC;IAED,OAAO,SAAS,CAAC;AACrB,CAAC,CAAC;AAEF,MAAM,6BAA6B,GAAG,CAAC,IAAmB,EAAW,EAAE;IACnE,MAAM,iBAAiB,GAAG,oBAAoB,CAAC,IAAI,CAAC,CAAC;IAErD,IAAI,OAAO,iBAAiB,KAAK,QAAQ,EAAE,CAAC;QACxC,OAAO,KAAK,CAAC;IACjB,CAAC;IAED,OAAO,iBAAiB,CAAC,IAAI,EAAE,CAAC,MAAM,GAAG,CAAC,CAAC;AAC/C,CAAC,CAAC;AAEF,2BAA2B;AAC3B,MAAM,IAAI,GAAkC,UAAU,CAAwB;IAC1E,MAAM,CAAC,OAAO;QACV,OAAO;YACH,8DAA8D,CAC1D,IAA4B;gBAE5B,MAAM,CAAC,aAAa,CAAC,GAAG,IAAI,CAAC,SAAS,CAAC;gBAEvC,IAAI,aAAa,EAAE,IAAI,KAAK,kBAAkB,EAAE,CAAC;oBAC7C,OAAO;gBACX,CAAC;gBAED,MAAM,sBAAsB,GAAG,iBAAiB,CAC5C,aAAa,EACb,gBAAgB,CACnB,CAAC;gBAEF,IAAI,sBAAsB,EAAE,KAAK,CAAC,IAAI,KAAK,kBAAkB,EAAE,CAAC;oBAC5D,OAAO;gBACX,CAAC;gBAED,MAAM,2BAA2B,GAAG,iBAAiB,CACjD,sBAAsB,CAAC,KAAK,EAC5B,qBAAqB,CACxB,CAAC;gBAEF,IAAI,2BAA2B,KAAK,SAAS,EAAE,CAAC;oBAC5C,OAAO;gBACX,CAAC;gBAED,IACI,CAAC,6BAA6B,CAC1B,2BAA2B,CAAC,KAAK,CACpC,EACH,CAAC;oBACC,OAAO;gBACX,CAAC;gBAED,OAAO,CAAC,MAAM,CAAC;oBACX,SAAS,EAAE,SAAS;oBACpB,IAAI,EAAE,2BAA2B;iBACpC,CAAC,CAAC;YACP,CAAC;SACJ,CAAC;IACN,CAAC;IACD,cAAc,EAAE,EAAE;IAClB,IAAI,EAAE;QACF,UAAU,EAAE,KAAK;QACjB,IAAI,EAAE;YACF,WAAW,EACP,qGAAqG;YACzG,MAAM,EAAE,KAAK;YACb,WAAW,EAAE,KAAK;YAClB,GAAG,EAAE,kGAAkG;SAC1G;QACD,QAAQ,EAAE;YACN,OAAO,EACH,qEAAqE;SAC5E;QACD,MAAM,EAAE,EAAE;QACV,IAAI,EAAE,SAAS;KAClB;IACD,IAAI,EAAE,sCAAsC;CAC/C,CAAC,CAAC;AAEH,eAAe,IAAI,CAAC;AACpB,iIAAiI"}

package/dist/rules/no-electron-disable-context-isolation.d.ts

@@ -0,0 +1,5 @@
+import { createRule } from "../_internal/create-rule.js";
+/** Rule implementation. */
+declare const rule: ReturnType<typeof createRule>;
+export default rule;
+//# sourceMappingURL=no-electron-disable-context-isolation.d.ts.map

package/dist/rules/no-electron-disable-context-isolation.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"no-electron-disable-context-isolation.d.ts","sourceRoot":"","sources":["../../src/rules/no-electron-disable-context-isolation.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,6BAA6B,CAAC;AAKzD,2BAA2B;AAC3B,QAAA,MAAM,IAAI,EAAE,UAAU,CAAC,OAAO,UAAU,CAyBtC,CAAC;AAEH,eAAe,IAAI,CAAC"}

package/dist/rules/no-electron-disable-context-isolation.js

@@ -0,0 +1,30 @@
+import { createRule } from "../_internal/create-rule.js";
+import { createElectronWebPreferencesBooleanListener } from "../_internal/electron-web-preferences.js";
+/** Rule implementation. */
+const rule = createRule({
+    create(context) {
+        return createElectronWebPreferencesBooleanListener(context, {
+            disallowedValue: false,
+            preferenceName: "contextIsolation",
+        });
+    },
+    defaultOptions: [],
+    meta: {
+        deprecated: false,
+        docs: {
+            description: "disallow disabling contextIsolation in Electron webPreferences.",
+            frozen: false,
+            recommended: false,
+            url: "https://nick2bad4u.github.io/eslint-plugin-SDL-2/docs/rules/no-electron-disable-context-isolation",
+        },
+        fixable: "code",
+        messages: {
+            default: "Do not set webPreferences.contextIsolation to false.",
+        },
+        schema: [],
+        type: "problem",
+    },
+    name: "no-electron-disable-context-isolation",
+});
+export default rule;
+//# sourceMappingURL=no-electron-disable-context-isolation.js.map

package/dist/rules/no-electron-disable-context-isolation.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"no-electron-disable-context-isolation.js","sourceRoot":"","sources":["../../src/rules/no-electron-disable-context-isolation.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,6BAA6B,CAAC;AACzD,OAAO,EAAE,2CAA2C,EAAE,MAAM,0CAA0C,CAAC;AAIvG,2BAA2B;AAC3B,MAAM,IAAI,GAAkC,UAAU,CAAwB;IAC1E,MAAM,CAAC,OAAO;QACV,OAAO,2CAA2C,CAAC,OAAO,EAAE;YACxD,eAAe,EAAE,KAAK;YACtB,cAAc,EAAE,kBAAkB;SACrC,CAAC,CAAC;IACP,CAAC;IACD,cAAc,EAAE,EAAE;IAClB,IAAI,EAAE;QACF,UAAU,EAAE,KAAK;QACjB,IAAI,EAAE;YACF,WAAW,EACP,iEAAiE;YACrE,MAAM,EAAE,KAAK;YACb,WAAW,EAAE,KAAK;YAClB,GAAG,EAAE,mGAAmG;SAC3G;QACD,OAAO,EAAE,MAAM;QACf,QAAQ,EAAE;YACN,OAAO,EAAE,sDAAsD;SAClE;QACD,MAAM,EAAE,EAAE;QACV,IAAI,EAAE,SAAS;KAClB;IACD,IAAI,EAAE,uCAAuC;CAChD,CAAC,CAAC;AAEH,eAAe,IAAI,CAAC"}