IBM / audit-ciLinks
Audit NPM, Yarn, PNPM, and Bun dependencies in continuous integration environments, preventing integration if vulnerabilities are found at or above a configurable threshold while ignoring allowlisted advisories
☆270Updated last month
Alternatives and similar repositories for audit-ci
Users that are interested in audit-ci are comparing it to the libraries listed below
Sorting:
- Lint an npm or yarn lockfile to analyze and detect security issues☆804Updated 2 months ago
- semantic-release plugin to publish a npm package☆268Updated this week
- Proof of concept that wraps semantic-release to work with monorepos.☆208Updated 2 months ago
- ✨ JSON schema matcher for Jest☆171Updated last month
- Configurable linter for package.json files☆236Updated last month
- 📦:🛠✨💥 – fully automated package publishing☆686Updated last year
- Get details about the current Continuous Integration environment☆349Updated 3 months ago
- ESLint rules for formatting test suites written for jest.☆155Updated 2 years ago
- Detect if the current environment is a CI server☆394Updated 6 months ago
- Keep watch of your bundle size☆431Updated 2 months ago
- A command line tool for bulk-updating lerna package dependencies☆268Updated 2 years ago
- Additional ESLint rules for directive comments of ESLint.☆370Updated last year
- Build 🛠 and Bundle 📦 your local workspaces. Like Bazel, Buck, Pants and Please but for Yarn Berry. Build any language, mix javascript, …☆329Updated last year
- Get environment variables exposed by CI services☆235Updated this week
- Report jest test errors directly in pull requests☆106Updated this week
- ☆123Updated 2 years ago
- 📦 🚀 A slack bot for semantic-release notifying release statuses☆117Updated 9 months ago
- Setup automated semver compliant package publishing☆371Updated last year
- Suppress existing violations of new eslint rules and get back to building stuff.☆193Updated this week
- JSON Schema validation for Human 👨🎤☆239Updated last week
- 🍺 dev only postinstall hooks (package.json)☆261Updated 2 years ago
- GitHub Action for install npm dependencies with caching without any configuration☆668Updated last month
- The missing `yarn audit fix`☆186Updated last week
- A highly opinionated way for creating Jest Runners☆135Updated this week
- Command runner for Yarn workspaces. Dependency aware.☆516Updated last year
- Jest watch plugin for filtering test by file name or test name☆410Updated this week
- Chain Jest matchers together to create one powerful assertion 🃏⛓☆277Updated 2 years ago
- ESLint rule that reports usage of deprecated code☆334Updated 8 months ago
- ☆63Updated last week
- GitHub action that lints your code with eslint in parallel to your builds☆127Updated 5 years ago