Dev Tools · 1h ago
New ESLint plugin catches TypeORM SQL injection and other bugs
A developer created eslint-plugin-typeorm-enterprise to catch common TypeORM mistakes like SQL injection, unsafe deletes, and missing transactions. The plugin offers ten rules across recommended, strict, performance, and multi-tenant configs. It works with plain ESLint 9 and oxlint without type setup.
Meridian48 take
Automating code review for repetitive security flaws is smart, but the plugin's reliance on syntax trees means it may miss context-dependent issues that only human review can catch.
sql-injectioneslint-plugin