Skip to content

nodejs/nodejs-dependency-vuln-assessments

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

38 Commits
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

node-js-dependency-vuln-assessments

This repo is used to

  1. Run automated checks for vulnerabilities in Node.js dependencies that have already been made public.
  2. Track and communicate information about dependency vulnerabilities that are public and have not yet been addressed.

Automated checks are currently run through a GitHub action using dep_checker.

DO NOT REPORT OR DISCUSS VULNERABILITIES THAT ARE NOT ALREADY PUBLIC IN THIS REPO. Please report new vulnerabilities either to the projects for a specific dependency or report to the Node.js project as outlined in the Node.js SECURITY.md file.