@metamask/eslint-config

This monorepo contains MetaMask's ESLint configurations as npm packages. The different configs are split up into individual packages so that we can correctly specify their peer dependencies.

Contributing

Setup

• Install the current LTS version of Node.js
  • If you are using nvm (recommended) running nvm install will install the latest version and running nvm use will automatically choose the right node version for you.
• Install Yarn v3
• Run yarn install to install dependencies and run any required post-install scripts

Testing and Linting

Run yarn lint to run the linter, or run yarn lint:fix to run the linter and fix any automatically fixable issues.

Updating or Adding Configs

Configs targeting an entirely new environment should be added in a new package. Our rule validation script (see ./scripts/validate-rules.js) forbids the following rules:

• Rules that override Prettier's recommended ESLint rules
• Uselessly configured rules, meaning:
  • Rules that are disabled but never enabled by an extended config.
  • Rules that are configured identically by the package's extended configs.
• For the purpose of determining the "usefulness" of rules, we include our base config (@metamask/eslint-config) in the set of extended configs, since it should always be extended by the consumer in practice.

Linting will fail in CI if any of the above conditions are violated in any config.

Finally, in order to understand the impact of changing rules or the set of extended configs, each package has a rules-snapshot.json fill which contains all rules of the particular config and its extended configs in a single dictionary. When editing a package, always check its rules snapshots after running yarn lint:fix to understand which rules changed.

Release & Publishing

To create a release, start by creating a release candidate branch to update package versions and changelogs. Once the release candidate is reviewed and merged, the release will be created automatically (pending approval for the npm publish step).

Note that we usually try to keep these packages aligned on the same major version so that it's easier for users to understand which versions are compatible with each other.

We use the @metamask/create-release-branch tool to prepare release candidates. This tool supports two workflows: interactive UI (recommended for most users) or manual specification.

Option A: Interactive Mode (Recommended)

This option provides a visual interface to streamline the release process:

1. Start the interactive release tool.

   On the main branch, run:

   yarn create-release-branch -i

   This will start a local web server (default port 3000) and open a browser interface.

2. Select packages to release.

   The UI will show all packages with changes since their last release. For each package:

   • Choose whether to include it in the release
   • Select an appropriate version bump (patch, minor, or major) following SemVer rules
   • The UI will automatically validate your selections and identify dependencies that need to be included

3. Review and resolve dependency requirements.

   The UI automatically analyzes your selections and identifies potential dependency issues that need to be addressed before proceeding. You'll need to review and resolve these issues by either:

   • Including the suggested additional packages
   • Confirming that you want to skip certain packages (if you're certain they don't need to be updated)

   Common types of dependency issues you might encounter:

   • Missing dependencies: If you're releasing Package A that depends on Package B, the UI will prompt you to include Package B
   • Breaking change impacts: If you're releasing Package B with breaking changes, the UI will identify packages that have peer dependencies on Package B that need to be updated
   • Version incompatibilities: The UI will flag if your selected version bumps don't follow semantic versioning rules relative to dependent packages

   Unlike the manual workflow where you need to repeatedly edit a YAML file, in the interactive mode you can quickly resolve these issues by checking boxes and selecting version bumps directly in the UI.

4. Confirm your selections.

   Once you're satisfied with your package selections and version bumps, confirm them in the UI. This will:

   • Create a new branch named release/<new release version>
   • Update the version in each package's package.json
   • Add a new section to each package's CHANGELOG.md for the new version

5. Review and update changelogs.

   Each selected package will have a new changelog section. Review these entries to ensure they are helpful for consumers:

   • Categorize entries appropriately following the "Keep a Changelog" guidelines. Ensure that no changes are listed under "Uncategorized".
   • Remove changelog entries that don't affect consumers of the package (e.g. lockfile changes or development environment changes). Exceptions may be made for changes that might be of interest despite not having an effect upon the published package (e.g. major test improvements, security improvements, improved documentation, etc.).
   • Reword changelog entries to explain changes in terms that users of the package will understand (e.g., avoid referencing internal variables/concepts).
   • Consolidate related changes into single entries where appropriate.

   Run yarn changelog:validate when you're done to ensure all changelogs are correctly formatted.

6. Push and submit a pull request.

   Create a PR for the release branch so that it can be reviewed and tested. Release PRs can be approved by codeowners of affected packages, so as long as the above guidelines have been followed, there is no need to reach out to the Wallet Framework team for approval.

7. Incorporate any new changes from main.

   If you see the "Update branch" button on your release PR, stop and look over the most recent commits made to main. If there are new changes to packages you are releasing, make sure they are reflected in the appropriate changelogs.

8. Merge the release PR and wait for approval.

   "Squash & Merge" the release PR when it's approved.

   Merging triggers the publish-release GitHub action workflow to tag the final release commit and publish the release on GitHub. Before packages are published to NPM, this action will automatically notify the npm-publishers team in Slack to review and approve the release.

9. Verify publication.

   Once the npm-publishers team has approved the release, you can click on the link in the Slack message to monitor the remainder of the process.

   After the action has completed, check NPM to verify that all relevant packages have been published.

Tip: You can specify a different port if needed: yarn create-release-branch -i -p 3001

Option B: Manual Release Specification

If you prefer more direct control over the release process:

1. Start by creating the release branch.

   On the main branch, run yarn create-release-branch. This command creates a branch named release/<new release version> which will represent the new release.

2. Specify packages to release along with their versions.

   Unless you've made a lot of breaking changes, you probably don't want to publish a new version of every single package in this repo. Fortunately, you can choose a subset of packages to include in the next release. You do this by modifying a YAML file called a "release spec", which the tool has generated and opened it in your editor. Follow the instructions at the top of the file for more information.

   In addition to selecting a list of packages, you'll also want to tell the tool which new versions they ought to receive. Since you'll want to follow SemVer, how you bump a package depends on the nature of the changes. You can understand these changes better by opening the changelog for each package in your editor.

   Once you save and close the release spec, the tool will proceed.

3. Review and resolve dependency requirements.

   The tool automatically analyzes your selections and identifies potential dependency issues that need to be addressed before proceeding. You'll need to review and resolve these issues by either:

   • Including the suggested additional packages
   • Confirming that you want to skip certain packages (if you're certain they don't need to be updated)

   Common types of dependency issues you might encounter:

   • Missing dependencies: If you're releasing Package A that depends on Package B, the UI will prompt you to include Package B
   • Breaking change impacts: If you're releasing Package B with breaking changes, the UI will identify packages that have peer dependencies on Package B that need to be updated
   • Version incompatibilities: The UI will flag if your selected version bumps don't follow semantic versioning rules relative to dependent packages

   To address these issues, you will need to reopen the YAML file, modify it by either adding more packages to the release or omitting packages from the release you think are safe, and then re-running yarn create-release-branch. You may need to repeat this step multiple times until you don't see any more errors.

4. Review and update changelogs for relevant packages.

   Once the tool proceeds without issue, you will be on the new release branch. In addition, each package you intend to release has been updated in two ways:

   • The version in package.json has been bumped.
   • A new section has been added at the top of CHANGELOG for the new version.

   At this point, you need to review the changelog entries and ensure that they are helpful for consumers:

   • Categorize entries appropriately following the "Keep a Changelog" guidelines. Ensure that no changes are listed under "Uncategorized".
   • Remove changelog entries that don't affect consumers of the package (e.g. lockfile changes or development environment changes). Exceptions may be made for changes that might be of interest despite not having an effect upon the published package (e.g. major test improvements, security improvements, improved documentation, etc.).
   • Reword changelog entries to explain changes in terms that users of the package will understand (e.g., avoid referencing internal variables/concepts).
   • Consolidate related changes into single entries where appropriate.

   Make sure to run yarn changelog:validate once you're done to ensure all changelogs are correctly formatted.

5. Push and submit a pull request.

   Create a PR for the release branch so that it can be reviewed and tested. Release PRs can be approved by codeowners of affected packages, so as long as the above guidelines have been followed, there is no need to reach out to the Wallet Framework team for approval.

6. Incorporate any new changes from main.

   If you see the "Update branch" button on your release PR, stop and look over the most recent commits made to main. If there are new changes to packages you are releasing, make sure they are reflected in the appropriate changelogs.

7. Merge the release PR and wait for approval.

   "Squash & Merge" the release PR when it's approved.

   Merging triggers the publish-release GitHub action workflow to tag the final release commit and publish the release on GitHub. Before packages are published to NPM, this action will automatically notify the npm-publishers team in Slack to review and approve the release.

8. Verify publication.

   Once the npm-publishers team has approved the release, you can click on the link in the Slack message to monitor the remainder of the process.

   After the action has completed, check NPM to verify that all relevant packages have been published.

Changelog

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.

Unreleased

14.1.0

Changed

• Loosen promise/catch-or-return and promise/param-names rules (#384)

14.0.0

Changed

• BREAKING: Bump minimum Node.js version from 16 to 18.18 (#371)
• BREAKING: Bump peer dependency on ESLint from ^8.57.0 to ^9.11.0 (#370)
  • ESLint 9 requires flat configs, so this change also rewrites the configs to use flat configs. The legacy config format is no longer supported.
• BREAKING: Bump peer dependency on @metamask/eslint-config from ^13.0.0 to ^14.0.0 (#377)
• BREAKING: Bump peer dependency on eslint-config-prettier from ^8.5.0 to ^9.1.0 (#370)
• BREAKING: Bump peer dependency on eslint-plugin-import-x from ^0.5.1 to ^4.3.0 (#370)
• BREAKING: Bump peer dependency on eslint-plugin-jsdoc from >=43.0.7 <48 to ^50.2.4 (#370)
• BREAKING: Bump peer dependency on eslint-plugin-prettier from ^4.2.1 to ^5.2.1 (#370)
• BREAKING: Bump peer dependency on eslint-plugin-promise from ^6.1.1 to ^7.1.0 (#370)
• BREAKING: Bump peer dependency on prettier from ^2.7.1 to ^3.3.3 (#370)
• BREAKING: Change package to be pure ESM (#370)
  • ESLint 9 supports ESM out-of-the-box, so this change updates the package to be pure ESM. This means that the package can no longer be used with CommonJS require syntax.

13.0.0

Changed

• BREAKING: Replace eslint-plugin-import with eslint-plugin-import-x (#366)
• BREAKING: Bump all ESLint dependencies (#351)
  • Bumps all ESLint dependencies to the latest version compatible with Node.js 16.
• BREAKING: Bump minimum Node.js version from 14 to 16 (#332, #339)

12.2.0

Changed

• Remove deprecated rule jsdoc/newline-after-description (#290)
  • This means the plugin can now be used with eslint-plugin-jsdoc versions 42 and above.

Fixed

• Pin eslint-plugin-import@~2.26.0 to avoid a regression in eslint-plugin-import@2.27.0 (#307)
• Change endOfLine rules to better support linting on Windows (#311)

12.1.0

Changed

• Add support for typescript 5.0.x, 5.1.x (#288)

12.0.0

Added

• BREAKING: Add eslint-plugin-promise peer dependency, and enable no-multiple-resolved (#287)

11.1.0

Changed

• Exclude test files from package (#266)

11.0.2

Changed

• Stop requiring newlines between multiline blocks/expressions (#263)

11.0.1

Fixed

• Enable function expressions again (#258)
  • We didn't realize this rule would disallow class methods, even class constructors. This was too disruptive.

11.0.0

Added

• BREAKING: Enable id-denylist and id-length in base config (#200)
• BREAKING: Add rules for hybrid Node.js and browser environments (#242)
  • The base config now only allows globals and modules that are available in both Node.js and browsers.
  • This adds a new @metamask/eslint-config-browser package, to be used in browser-only environments.
  • The @metamask/eslint-config-nodejs package has been updated to allow Node.js-only globals and modules.

Changed

• BREAKING: Remove no-undef in favour of custom environments configuration (#254)
• BREAKING: Bump all ESLint dependencies to the latest version (#252)
  • This includes peer dependencies.
• BREAKING: Automatically sort imports (#248)
• BREAKING: Disable more undesired syntax (#207)
  • This disables the with statement, function expressions, and the in operator.

10.0.0

Changed

• BREAKING: Update ESLint from v7 to v8 (#233)
  • This is breaking because eslint is a peerDependency.
  • Four new rules have been added:
    • no-loss-of-precision
    • no-nonoctal-decimal-escape
    • no-unsafe-optional-chaining
    • no-useless-backreference
• BREAKING: Update eslint-plugin-prettier from v3 to v4 (#231)
  • This is breaking beacuse eslint-plugin-prettier is a peerDependency.
• BREAKING: Update minimum Node.js version to v14 (#225)
• Ignore rest siblings for no-unused-vars (#213)
  • This makes the no-unused-vars rule more permissive

9.0.0

Added

• BREAKING: Add JSDoc ESLint rules (#203)

8.0.0

Changed

• BREAKING: Require newlines between multiline blocks and expressions (#197)

7.0.1

Fixed

• Restore default parserOptions (#193)
  • By extending the recommended eslint-plugin-import rules, we accidentally changed the default parserOptions.sourceType to module. The sourceType is now explicitly set to script.
  • In some cases, parserOptions.ecmaVersion could also be set to an incorrect version. The ecmaVersion is now explicitly set to 2017, matching the corresponding setting in env.

7.0.0

Changed

• BREAKING: Update Prettier quoteProps rule to as-needed (#181)
• BREAKING: Update ESLint no-shadow config (#168)
• Use recommended eslint-plugin-import rule sets (#184)
  • This only removed or disabled rules, and is not breaking.
• Update install instructions in readme (#185)
• Normalize rule config values (#169)

6.0.0 - 2021-04-08

Changed

• BREAKING: Set minimum Node.js version to ^12.0.0 (#144)
• BREAKING: Set ECMAScript version to es2017/8 (#150)
• BREAKING: Add the Prettier ESLint plugin and extend the recommended Prettier ESLint config (#96)
  • See here for the eslint-plugin-prettier rules and here for the rules of eslint-config-prettier, which the plugin extends.
  • The rules of this config should otherwise be unchanged.
• Update eslint and other ESLint peer dependencies (#151)

Removed

• BREAKING: All configs except the base config (#141)
  • All configs are now published as separate packages, and must be extended by referencing their package names:
    • @metamask/eslint-config (the base config)
    • @metamask/eslint-config-jest
    • @metamask/eslint-config-mocha
    • @metamask/eslint-config-nodejs
    • @metamask/eslint-config-typescript

5.0.0 - 2021-02-02

Changed

• BREAKING: Enable semi in base config (#101)
• BREAKING: Disallow spaces before parentheses of named functions (#101)
• BREAKING: Upgrade to TypeScript v4 and corresponding @typescript-eslint dependencies (#79, #80, #103)

4.1.0 - 2020-10-21

Changed

• Disable node/no-missing-import (#75)
• Disable node/no-missing-require (#75)

4.0.0 - 2020-10-20

Changed

• BREAKING: Update to ESLint v7 (#46, #58, #62, #63)
• Relax member-delimiter-style for TypeScript (#68)
• Disable space-before-function-paren for TypeScript (#65)

3.2.0 - 2020-08-20

Changed

• Relax prefer-destructuring rules (#57)

3.1.0 - 2020-08-19

Changed

• Disable prefer-object-spread (#54)

3.0.0 - 2020-08-11

Changed

• Disallow all anonymous default exports (#52)
• Set maximum empty lines to 1 (#51)

2.2.0 - 2020-07-14

Changed

• Relax no-plusplus rule (#44)

2.1.1 - 2020-04-17

Changed

• Disable require-await (#37)

2.1.0 - 2020-02-24

Changed

• Disable @typescript-eslint/no-extra-parens (#29)

2.0.0 - 2020-02-20

Added

• Add import rules to base config (#24)
• Clarified TypeScript config & publishing docs

Changed

• Explicitly specify all core rules (#17)
• Update TypeScript config (#25)

Removed

• Remove root flag from TS config (#20)

1.2.0 - 2020-02-18

Changed

• Disable Jest lowercase-name for describe blocks (#14)

1.1.0 - 2020-02-11

Added

• Add README file
• Add Mocha config (#13)

1.0.0 - 2020-01-21

Added

• Add base, TypeScript, and Jest configs (#3)