A developer-friendly static code analysis for React security?
yes, it exists:


Try Snyk Code, a developer-first SAST tool.
Like an ESLint rule for react security, but better.
Did I mention it's free?

⚠️ Important notice, this repository is not publisher to npmjs, and it isn't the same as eslint-plugin-react-security, which is a different project, maintained by an entirely different developer.

⚠️ Maintenance notice: The eslint-plugin-react-security project is no longer under active maintenance by the Snyk team.

Instead, we invite you to try out the Snyk Code IDE integrations for either IntelliJ or VSCode which provide a developer-friendly secure coding experience while you code.