Skip to content

irom77/nsp

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

162 Commits
bin
bin
 
 
commands
commands
 
 
lib
lib
 
 
tests
tests
 
 
.gitignore
.gitignore
 
 
.jscsrc
.jscsrc
 
 
.jshintignore
.jshintignore
 
 
.jshintrc
.jshintrc
 
 
.travis.yml
.travis.yml
 
 
CODE_OF_CONDUCT.md
CODE_OF_CONDUCT.md
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
npm-shrinkwrap.json
npm-shrinkwrap.json
 
 
package.json
package.json
 
 

Repository files navigation

command line tools

This package consists in a CLI tool that enables developers or CI tools to check if their Node.js projects are using packages with known and public vulnerable dependencies. The vulnerability database is provided by the Node Security Project

Badgers

NPM

Dependency Status![Gitter](https://badges.gitter.im/Join Chat.svg)

Installation

Through npm:

npm i nsp -g

Through GitHub:

git clone git@github.com:nodesecurity/nsp.git
cd nsp
npm link

Usage

nsp audit-shrinkwrap

Takes an existing npm-shrinkwrap.json file and submits it for validation to nodesecurity.io

Example:

$ nsp audit-shrinkwrap
Name     Installed  Patched  Vulnerable Dependency
connect    2.7.5    >=2.8.1  nodesecurity-jobs > kue > express

nsp audit-package

Takes an existing package.json file and submits it for validation to nodesecurity.io

Example:

$ nsp audit-package
Name     Installed  Patched  Vulnerable Dependency
connect    2.7.5    >=2.8.1  nodesecurity-jobs > kue > express

About

nodesecurity.io

Resources

Readme

License

MIT license

Code of conduct

Code of conduct
Activity

Stars

1 star

Watchers

2 watching

Forks

0 forks
Report repository

Releases

6 tags

Packages

 
 
 

Languages

  • JavaScript 100.0%