Fatima Logofatima
Security

Secret leaking

Fatima helps you prevent secret leaking in your codebase.

ESlint

The Plugin

Fatima provides an ESLint plugin containing two rules: no-process-env and no-env.

The former is enabled by default, and it will prevent you from accessing process.env in your codebase.

This helps you avoid accidentally leaking secrets, as process.env does not provide any kind of safety. It also keeps your codebase consistent.

As for the latter, it prevents you from acessing the env object generated by fatima, and it needs to be enabled manually as it requires you to specify the files you don't want to access the object.

Setup

eslint.config.ts
import { linter as fatima } from "fatima";
 
export default [
  fatima.eslint.plugin,
  fatima.eslint.noEnvRule("**/*.tsx"),
] satisfies ESLintConfig;

In the example above, we're enabling the no-env rule for all .tsx files.

Previous

Environment mixing

Next

Setting up public secrets

On this page