sonatype-nexus-community / auditjsLinks
Audits an NPM package.json file to identify known vulnerabilities.
☆227Updated 6 months ago
Alternatives and similar repositories for auditjs
Users that are interested in auditjs are comparing it to the libraries listed below
Sorting:
- ☆49Updated 2 weeks ago
- njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.☆401Updated 6 months ago
- creates CycloneDX Software-Bill-of-Materials (SBOM) from node-based projects☆128Updated last week
- A minimal port of the old, publicly archived "owasp-esapi-js" (Enterprise Security API for JavaScript) encoder.☆137Updated 2 years ago
- Scan your code for security misconfiguration, search for passwords and secrets.☆647Updated last year
- CLI component of OWASP PurpleTeam☆129Updated last year
- An UNMAINTAINTED project originally exported from code.google.com/p/owasp-esapi-js. This project is deprecated. See the README.md for fur…☆102Updated 4 years ago
- Fuzz testing for HTTP APIs with Artillery.io 🌪☆60Updated 3 years ago
- TSLint security rules☆69Updated 4 years ago
- SonarQube Scanner for the JavaScript world☆176Updated 2 years ago
- Zap baseline scanner in Docker with authentication☆103Updated last year
- SAMM stands for Software Assurance Maturity Model.☆397Updated 3 years ago
- Create CycloneDX Software Bill of Materials (SBOM) from Node.js NPM projects.☆88Updated this week
- umbrella config to achieve scanjs-like functionality through eslint☆88Updated 3 years ago
- Programmable interface to `clinic doctor`☆367Updated last year
- Find security vulnerabilities in open source npm packages while you code☆206Updated 3 years ago
- OWASP SecurityRAT (version 1.x) - Tool for handling security requirements in development☆181Updated 5 months ago
- Some thoughts on how Node.js might respond to a changing security environment☆173Updated 6 years ago
- ☆27Updated 4 years ago
- threatspec - continuous threat modeling, through code☆357Updated 4 years ago
- Node application to help managing Maturity Models like the ones created by BSIMM and OpenSAMM☆194Updated 6 years ago
- A pytest-inspired, DAST framework, capable of identifying vulnerabilities in a distributed, micro-service ecosystem through chaos enginee…☆221Updated last year
- Repo to hold mapping of user-security-stories☆120Updated 6 years ago
- An open source, online threat modelling tool from OWASP☆484Updated 11 months ago
- a javascript static security analysis tool☆590Updated 10 years ago
- The OWASP Secure Headers Project☆158Updated this week
- Software Component Verification Standard (SCVS)☆147Updated 2 months ago
- Generate CycloneDX Software Bill of Materials (SBOM) from webpack bundles at compile time.☆26Updated this week
- Detect vulnerable regexes in your project. REDOS, catastrophic backtracking.☆329Updated 3 years ago
- Fully open-source SAST scanner supporting a range of languages and frameworks. Integrates with major CI pipelines and IDE such as Azure D…☆148Updated 4 years ago