Open SukkaW opened 1 month ago
karlhorky
commented
1 month ago Interesting, thanks for the proposal!
I've been waiting on upgrading to eslint-plugin-sonarjs@^2, because I was looking for a changelog (eslint-plugin-sonarjs@1.0.4 is 11MB). Moving to a different plugin / rules is an interesting alternative... 🤔 I'll have to consider whether any of the v2 rules are good enough to stick with it (or if there are good enough alternatives)
karlhorky
commented
1 month ago I have tried to submit a PR to
eslint-plugin-sonarjs, but due to how they organize their monorepo and publish packages on npm, it seems impossible to move those dependencies to peer dependencies.
I would be interested in seeing the PR too - in case there's any chance that they would still approve and merge it, didn't see one in a first naive search
SukkaW
commented
1 month ago I have tried to submit a PR to
eslint-plugin-sonarjs, but due to how they organize their monorepo and publish packages on npm, it seems impossible to move those dependencies to peer dependencies.I would be interested in seeing the PR too - in case there's any chance that they would still approve and merge it, didn't see one in a first naive search
I had a local copy of the repo and was trying to understand how they manage the monorepo and publish them to npm. But after experimenting here and there I eventually realize that I will have to submit a huge PR to change their building infrastructure completely. That's why I didn't submit a PR yet.
karlhorky
commented
1 month ago Ok thanks for the details!
cc @yassin-kammoun-sonarsource @vdiez in case you weren't aware of the size / dependency infrastructure issues with eslint-plugin-sonarjs
SukkaW
commented
1 month ago I've been waiting on upgrading to
eslint-plugin-sonarjs@^2, because I was looking for a changelog (eslint-plugin-sonarjs@1.0.4is 11MB).
BTW, it sounds a bit ironic as their eslint-plugin-sonarjs@1 repo (https://github.com/SonarSource/eslint-plugin-sonarjs) is very easy to contribute, but the SonarSource team has abandoned that repo and started maintaining eslint-plugin-sonarjs@2 in another repo (https://github.com/SonarSource/SonarJS) instead. The SonarJS repo has a very bad code structure and a poor infrastructure.
vdiez
commented
1 month ago Hello all,
thanks, @karlhorky, for the heads up. We are aware of the issues raised here.
Just to share some insights about why we migrated from the eslint-plugin-sonarjs repo to SonarJS:
All the ESLint rules now sit under this folder. We are still in the process of improving v2 after this initial and drastic change, but hopefully, once we are in a stable situation, the ESLint plugin from Sonar will be a much better package than v1.
Now eslint-plugin-sonarjs v2 contains all rules from SonarJS (~300 rules instead of ~30 from v1). That was our initial goal.
Things that we have on our list:
Thanks
Edit: Some background about this change: https://community.sonarsource.com/t/will-sonarjs-rules-be-available-in-eslint-plugin-sonarjs/42955/6
https://pkg-size.dev/eslint-plugin-sonarjs
eslint-plugin-sonarjsincludes@babel/core,vue-eslint-parser,eslint-plugin-react,eslint-plugin-import,typescript-eslint@v7all in its dependencies, resulting in an installation size of 87 MiB. It is ridiculous.I have tried to submit a PR to
eslint-plugin-sonarjs, but due to how they organize their monorepo and publish packages on npm, it seems impossible to move those dependencies to peer dependencies.eslint-config-upleveledonly uses a few rules fromeslint-plugin-sonarjs, but most of them have a replacement:sonarjs/no-duplicated-branchesandsonarjs/no-identical-conditions@typescript-eslint/pluginsonarjs/prefer-single-boolean-returneslint-plugin-sonarjsdoesn't work on type, so the rule can only detect boolean literal, which might be limited.