npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

oxlint-plugin-errorset

v0.1.1

Published

Oxlint plugin that enforces correct usage of @takinprofit/errorset. Catches throws, catch-block misuse, and unguarded data access.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

takinprofittakinprofit

Keywords

oxlinteslinterrorseterror-handlinglint

Readme

oxlint-plugin-errorset

Linting rules for @takinprofit/errorset — enforces correct usage patterns and catches common mistakes at the source. Works with Oxlint's JS plugin API and ESLint flat config.

Why

errorset treats errors as return values, not thrown exceptions. A few patterns that look plausible are actually bugs:

// ❌ Looks right, but errorset values are never thrown
throw UserError.not_found`User not found`({ id })

// ❌ isErr() in a catch block will never match — errorset values can't be caught
try { await getUser(id) } catch (e) { if (isErr(e)) { ... } }

// ❌ Manual .kind check instead of a typed guard
if (isErr(result) && result.kind === "not_found") { ... }

This plugin catches all of the above automatically.

Requirements

  • Oxlint >= 1.0.0 (requires jsPlugins support)
  • Node.js >= 18

Installation

npm add -D oxlint-plugin-errorset
# or
bun add -d oxlint-plugin-errorset

Usage with Oxlint

Add the plugin to jsPlugins in your .oxlintrc.json and enable whichever rules you want:

{
  "jsPlugins": ["./node_modules/oxlint-plugin-errorset/dist/index.js"],
  "rules": {
    "oxlint-plugin-errorset/no-throw-errorset": "error",
    "oxlint-plugin-errorset/no-catch-errorset": "error",
    "oxlint-plugin-errorset/no-new-error-in-errorset-fn": "warn",
    "oxlint-plugin-errorset/prefer-guard-over-manual-kind-check": "warn",
    "oxlint-plugin-errorset/no-unguarded-data-access": "warn"
  }
}

Or use the bundled recommended config which enables all rules at their default severities:

{
  "jsPlugins": ["./node_modules/oxlint-plugin-errorset/dist/index.js"],
  "rules": {
    "oxlint-plugin-errorset/no-throw-errorset": "error",
    "oxlint-plugin-errorset/no-catch-errorset": "error",
    "oxlint-plugin-errorset/no-new-error-in-errorset-fn": "warn",
    "oxlint-plugin-errorset/prefer-guard-over-manual-kind-check": "warn",
    "oxlint-plugin-errorset/no-unguarded-data-access": "warn"
  }
}

Usage with ESLint

// eslint.config.mjs
import errorsetPlugin from "oxlint-plugin-errorset";

export default [
  {
    plugins: { errorset: errorsetPlugin },
    rules: errorsetPlugin.configs.recommended.rules,
  },
];

Rules

no-throw-errorset 🔧

Severity: error

Errorset values are returned, not thrown. Using throw with an errorset creation expression is always a bug — the value is discarded instead of being propagated to the caller.

This rule auto-fixes throwreturn.

❌ Incorrect

function getUser(id: string) {
  throw UserError.not_found`User ${id} not found`({ id }) // ← discarded!
}

const getUser = (id: string) => {
  throw UserError.invalid`Bad input`
}

✅ Correct

function getUser(id: string) {
  return UserError.not_found`User ${id} not found`({ id })
}

const getUser = (id: string) => UserError.invalid`Bad input`

Note: throw inside a .capture() target function is intentional and is exempt from this rule.

no-catch-errorset

Severity: error

Errorset values are returned by functions — they are never thrown, so they can never arrive in a catch clause. Using errorset guards (isErr, a set-level guard, or instanceof) inside catch will silently never match.

Also flags .kind access on the catch parameter, since e.kind implies the thrown error is an errorset — which is impossible.

Note: Errorset guards used inside a nested function within a catch block are exempted (they likely refer to a different value, not the catch parameter).

❌ Incorrect

try {
  await getUser(id)
} catch (e) {
  if (isErr(e)) { ... }            // ❌ isErrInCatch
  if (UserError(e)) { ... }        // ❌ guardInCatch
  if (e instanceof UserError) { }  // ❌ instanceofInCatch
  console.log(e.kind)              // ❌ kindInCatch
}

✅ Correct

// Check the return value directly — never use a catch block for errorset
const result = await getUser(id)
if (isErr(result)) { ... }
if (UserError(result)) { ... }

no-new-error-in-errorset-fn

Severity: warn

When a function already uses errorset to model its failure cases, throwing a raw new Error(...) is inconsistent — callers have no way to introspect it via guards. Return an errorset kind value instead.

The rule detects functions that contain at least one errorset creation expression and flags any throw new BuiltInError(...) inside them.

Options

// Allow specific built-in subtypes (e.g. invariant assertions)
{ "allowedBuiltins": ["TypeError"] }

❌ Incorrect

function getUser(id: string) {
  if (!id) throw new Error("id is required") // ❌
  return UserError.not_found`User ${id} not found`({ id })
}

✅ Correct

function getUser(id: string) {
  if (!id) return UserError.invalid`id is required`
  return UserError.not_found`User ${id} not found`({ id })
}

Note: throw new Error(...) inside the first argument of .capture() or .captureAsync() is exempt — that is the intended pattern for wrapping throwing third-party code.

prefer-guard-over-manual-kind-check 💡

Severity: warn

Inside a guard block (after isErr(result) or UserError(result) has matched), prefer the typed kind-level guard UserError.not_found(result) over a manual .kind === "not_found" string comparison. The guard is refactor-safe and provides better type narrowing.

This rule provides inline suggestions (not auto-fixes) to replace the comparison with the appropriate guard call.

❌ Incorrect

if (isErr(result)) {
  if (result.kind === "not_found") { ... }  // ❌ → suggest UserError.not_found(result)
}

if (UserError(result)) {
  if (result.kind === "suspended") { ... }  // ❌ → suggest UserError.suspended(result)
}

✅ Correct

if (isErr(result)) {
  if (UserError.not_found(result)) { ... }
}

if (UserError(result)) {
  if (UserError.suspended(result)) { ... }
}

no-unguarded-data-access

Severity: warn

Accessing errorset result properties (.data, .kind, .message, .cause) outside a guard block is unsafe — the value may be a success result, so these properties may not exist.

The rule tracks variables that have been passed to an errorset guard and flags property accesses on them outside any guard's consequent block.

❌ Incorrect

const result = getUser(id)
if (UserError(result)) { console.log("handled") }
console.log(result.data)   // ❌ — outside the guard block
const result = getUser(id)
if (isErr(result)) { handleError(result) }
console.log(result.kind)   // ❌ — outside the guard block

✅ Correct

const result = getUser(id)
if (UserError(result)) {
  console.log(result.data)  // ✅ — inside the guard block
}

if (UserError.not_found(result)) {
  console.log(result.message)  // ✅
}

Rule Summary

| Rule | Default | Fixable | Description | |---|---|---|---| | no-throw-errorset | error | 🔧 auto-fix | throw with an errorset value → return | | no-catch-errorset | error | — | Errorset guards inside catch blocks | | no-new-error-in-errorset-fn | warn | — | throw new Error() in errorset functions | | prefer-guard-over-manual-kind-check | warn | 💡 suggestion | .kind === string check inside guard block | | no-unguarded-data-access | warn | — | .data/.kind/.message/.cause outside a guard |

License

MIT