I built this after hitting 700+ ESLint errors and hydration bugs while working on Taxfy. AI tools kept rewriting files or hallucinating fixes, so I created a deterministic, rule-based alternative.

NeuroLint is a CLI that applies safe AST transforms for React/Next.js projects. No AI, no rewrites — just targeted fixes.

Because of the recent React 19 CVE-2025-55182, I shipped an emergency one-liner:

npx @neurolint/cli security:cve-2025-55182 . --fix

It bumps React/Next.js, applies overrides, previews diffs with --dry-run, and auto-reverts if something breaks.

What it does:

Fixes 50+ common React/Next.js issues

Applies migrations deterministically (TSX/JSX aware)

Respects --exclude patterns for vendor code

Works without needing to trust an LLM

GitHub repo: https://github.com/Alcatecablee/Neurolint-CLI

Docs + walkthrough: https://neurolint.dev/

Would love feedback — especially on what React/Next.js issues you’d want automated next.

One-command patch for the React Server Components RCE disclosed today:

npx @neurolint/cli security:cve-2025-55182 . --fix

Detects vulnerable React 19 + Next.js 15-16, updates to patched versions, creates backup before changes.

Built NeuroLint for deterministic code transformations - this CVE is exactly the use case.

GitHub: github.com/Alcatecablee/Neurolint