import expression false positives
See original GitHub issuewe’re encountering a lot of issues with false positives in the detection of import()
statements when evaluating code from npm
possible import expression rejected around line {number}
I’ll use my lavamoat-survey tool to get a list of offending code samples in popular packages on npm
Issue Analytics
- State:
- Created 3 years ago
- Comments:8 (8 by maintainers)
Top Results From Across the Web
Exaggerated false positives by popular differential expression ...
Abstract. When identifying differentially expressed genes between two conditions using human population RNA-seq samples, we found a phenomenon ...
Read more >Pylint false positives - lukeplant.me.uk
The import cycle had already been broken by placing one inside a function. I couldn't see a better way to structure the code...
Read more >False positive Typescript cannot find module warning
To solve this issue create file in the root of your repository types/images.d.ts with following contents: declare module '*.svg' { import ...
Read more >[java] UnusedImports: False positive if wildcard is used and ...
False positives from UnusedImports in some specific conditions: Import with wildcard (example: import java.util.*); Using only calls to static ...
Read more >Differential expression analysis
It uses the negative binomial generalized linear models. DESeq2 (as edgeR) is based on the hypothesis that most genes are not differentially expressed....
Read more >Top Related Medium Post
No results found
Top Related StackOverflow Question
No results found
Troubleshoot Live Code
Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start FreeTop Related Reddit Thread
No results found
Top Related Hackernoon Post
No results found
Top Related Tweet
No results found
Top Related Dev.to Post
No results found
Top Related Hashnode Post
No results found
Top GitHub Comments
I am working on optional lightweight “evasive” transformations that would do something like this, still without parsing, at the price of possibly changing the meaning of programs it is applied to. Anything that parses could instead do an accurate job, and should, rather than using the evasive transformations I’m writing. PR coming soon.
Is LavaMoat in position to do a more accurate analysis? I was wondering whether ew could add two more options for each module:
import
but doesn’t actuallyThese options would suppress the conservative check at runtime, in the same way that permitting access to globals opens a hole that will need to managed.