securesauce / precaution-beta

Precaution provides a simple, automated code review for GitHub projects by running code linters with a security focus on pull requests.
Other
1 stars 0 forks source link

TSLint spawn functionality #174

Closed MVrachev closed 5 years ago

MVrachev commented 5 years ago

I added a TSLint spawn functionality + unit tests for that.

Because the TSLint rules for TypeScript are 100% compatible with JavaScript (those are the words from the maintainer of the TSLint security rules project) I tested only on vulnerable JavaScript file.

Sadly, TSLint doesn't report you when you try to scan an invalid file with syntax errors. That's why I haven't added more sophisticated functionality in parseResults function in linters/tslint.js

Signed-off-by: Martin Vrachev mvrachev@vmware.com