CodeAnt AI home pagelight logodark logo
  • Support
  • Dashboard
  • Dashboard
Documentation
API Reference
Start Here
  • What is CodeAnt?
  • Join Community
Setup
  • Github
  • GitHub Enterprise
  • Bitbucket
  • Gitlab
  • Azure Devops
Pull Request Review
  • Features
  • Customize Review
  • Quality Gates
  • Integrations
Scan center
  • Code Security
  • Code Quality
  • Cloud Security
  • Engineering Productivity
Integrations
  • Jira
  • Test Coverage
  • CI/CD
IDE
  • Setup
  • Review
  • Enhancements
Rule Reference
  • Compliance
  • Anti-Patterns
  • Code Governance
  • Infrastructure Security Database
  • Application Security Database
    • Apex
    • Bash
    • C
    • Clojure
    • Cpp
    • Csharp
    • Dockerfile
    • Elixir
    • Fingerprints
    • Generic
    • Go
    • Html
    • Java
    • Javascript
      • Ajv
      • Angular
      • Apollo
      • Argon2
      • Audit
      • Aws-lambda
      • Axios
      • Bluebird
      • Browser
      • Chrome-remote-interface
      • Crypto
      • Deno
      • Express
      • Fbjs
      • Firebase
      • Grpc
      • Intercom
      • Jose
      • Jquery
      • Jsonwebtoken
      • Jssha
      • Jwt-simple
      • Knex
      • Lang
        • Best practice
        • Correctness
        • Hardcoded
        • Security
        • Security
      • Monaco-editor
      • Mongodb
      • Mongoose
      • Mssql
      • Mysql
      • Node-expat
      • Passport-jwt
      • Pg
      • Phantom
      • Playwright
      • Puppeteer
      • React
      • Sandbox
      • Sax
      • Sequelize
      • Serialize-javascript
      • Shelljs
      • Superagent
      • Thenify
      • Vm2
      • Vue
      • Wkhtmltoimage
      • Wkhtmltopdf
      • Xml2json
    • Json
    • Kotlin
    • Ocaml
    • Php
    • Problem-based-packs
    • Python
    • Ruby
    • Rust
    • Scala
    • Solidity
    • Swift
    • Terraform
    • Typescript
    • Yaml
Resources
  • Open Source
  • Blogs
Lang

Best practice

javascript-alert

found alert() call; should this be in production code?

javascript-debugger

found debugger call; should this be in production code?

javascript-confirm

found confirm() call; should this be in production code?

javascript-prompt

found prompt() call; should this be in production code?

zlib-async-loop

Creating and using a large number of zlib objects simultaneously can cause significant memory fragmentation. It is strongly recommended that the results of compression operations be cached or made synchronous to avoid duplication of effort.

assigned-undefined

undefined is not a reserved keyword in Javascript, so this is “valid” Javascript but highly confusing and likely to result in bugs.

lazy-load-module

Lazy loading can complicate code bundling if care is not taken, also requires are run synchronously by Node.js. If they are called from within a function, it may block other requests from being handled at a more critical time. The best practice is to require modules at the beginning of each file, before and outside of any functions.
Node knex hardcoded secretCorrectness
twitterlinkedin
Powered by Mintlify
Assistant
Responses are generated using AI and may contain mistakes.