no-script-url

Configuration

rslint.config.ts

import { defineConfig, js } from '@rslint/core';

export default defineConfig([
  js.configs.recommended,
  {
    rules: {
      'no-script-url': 'error',
    },
  },
]);

Rule Details

Disallow javascript: URLs.

Using javascript: URLs is considered by some as a form of eval. Code passed in javascript: URLs has to be parsed and evaluated by the browser in the same way that eval is processed.

Examples of incorrect code for this rule:

location.href = 'javascript:void(0)';

location.href = `javascript:void(0)`;

Examples of correct code for this rule:

location.href = 'https://example.com';

Original Documentation

https://eslint.org/docs/latest/rules/no-script-url

#no-script-url

#Configuration

#Rule Details

#Original Documentation

no-script-url

Configuration

Rule Details

Original Documentation