nodejs / security-advisoriesLinks
Security advisories for Node.js and the JavaScript ecosystem.
☆41Updated 4 years ago
Alternatives and similar repositories for security-advisories
Users that are interested in security-advisories are comparing it to the libraries listed below
Sorting:
- A zoo for malicious NPM packages☆20Updated 2 years ago
- An extensible, heuristic-based vulnerability scanning tool for installed npm packages☆50Updated 3 years ago
- Discussion area for security aspects of ECMAScript☆64Updated 7 years ago
- A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.☆57Updated this week
- Vulnerabilities discovered in npm packages [Berkeley PL & Security Research]☆42Updated 11 months ago
- A Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC☆32Updated 4 months ago
- Make it easy to probe the strengths and weaknesses of a hardened Node.js stack☆19Updated 6 years ago
- Find security vulnerabilities in open source npm packages while you code☆206Updated 3 years ago
- Policy management tool for Node.js☆22Updated 2 years ago
- TSLint security rules☆69Updated 4 years ago
- rules for scanjs functionality☆28Updated 3 years ago
- npm audit security report☆35Updated last month
- Some thoughts on how Node.js might respond to a changing security environment☆173Updated 6 years ago
- Security design pattern support for Node.js☆24Updated 6 years ago
- Static analysis tool for javascript code based. Scanjs uses Esprima to convert sources to AST, then walks AST looking for patterns.☆54Updated 11 years ago
- Programmatically fetch security vulnerabilities with one or many strategies (NPM Audit, Sonatype, Snyk, Node.js DB).☆30Updated last week
- A developer-friendly secrets detection tool for CI and pre-commit hooks based on Yelp's detect-secrets☆51Updated 3 years ago
- Generic SAST Library☆131Updated 6 months ago
- Generate a text for a GitHub issue announcing a Node.js working group meeting☆12Updated 5 months ago
- ☆16Updated 6 years ago
- An npm beholder that deceives you☆31Updated 5 months ago
- WebAppSec Content Security Policy☆220Updated this week
- Checks filenames to be committed against a library of filename rules to prevent sensitive files in Git☆66Updated this week
- ☆12Updated 2 years ago
- Mitigate security concerns of Dependency Confusion supply chain security risks☆46Updated 2 years ago
- A tool for detecting regular expression denial-of-service vulnerabilities in Android apps.☆34Updated 8 years ago
- Inject JS to the DOM to find vulnerable JavaScript libraries☆10Updated 8 months ago
- A fork of Node.js to hash out ideas related to ESModules☆73Updated 5 years ago
- umbrella config to achieve scanjs-like functionality through eslint☆88Updated 3 years ago
- A Modest Content Security Proposal☆40Updated 3 years ago