sonatype-nexus-community / auditjsLinks
Audits an NPM package.json file to identify known vulnerabilities.
☆229Updated 2 months ago
Alternatives and similar repositories for auditjs
Users that are interested in auditjs are comparing it to the libraries listed below
Sorting:
- TSLint security rules☆69Updated 5 years ago
- creates CycloneDX Software-Bill-of-Materials (SBOM) from node-based projects☆133Updated last week
- Find security vulnerabilities in open source npm packages while you code☆210Updated 3 years ago
- njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.☆409Updated 9 months ago
- Some thoughts on how Node.js might respond to a changing security environment☆173Updated 6 years ago
- ☆52Updated this week
- A minimal port of the old, publicly archived "owasp-esapi-js" (Enterprise Security API for JavaScript) encoder.☆139Updated 3 years ago
- Detect vulnerable regexes in your project. REDOS, catastrophic backtracking.☆334Updated 3 years ago
- Scan your code for security misconfiguration, search for passwords and secrets.☆649Updated 2 years ago
- Create CycloneDX Software Bill of Materials (SBOM) from Node.js NPM projects.☆95Updated last week
- Fuzz testing for HTTP APIs with Artillery.io 🌪☆60Updated 3 years ago
- A developer-friendly secrets detection tool for CI and pre-commit hooks based on Yelp's detect-secrets☆51Updated 3 years ago
- Fast and simple way to check any HTTP Headers☆46Updated 2 years ago
- Security advisories for Node.js and the JavaScript ecosystem.☆41Updated 4 years ago
- Node.js Ecosystem Security Working Group☆526Updated 2 weeks ago
- SonarQube Scanner for the JavaScript world☆176Updated 2 years ago
- ESLint security plugin for Node.js☆104Updated last year
- OWASP Foundation Web Repository☆47Updated 7 months ago
- Node.js vulnerability scanner☆103Updated 5 years ago
- Security design pattern support for Node.js☆24Updated 6 years ago
- Tool to export test reports from the Snyk CLI to HTML.☆101Updated this week
- Fully open-source SAST scanner supporting a range of languages and frameworks. Integrates with major CI pipelines and IDE such as Azure D…☆149Updated 4 years ago
- A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.☆61Updated 2 months ago
- Custom ESLint rule to disallows unsafe innerHTML, outerHTML, insertAdjacentHTML and alike☆237Updated last week
- rules for scanjs functionality☆28Updated 4 years ago
- OWASP SecurityRAT (version 1.x) - Tool for handling security requirements in development☆183Updated 3 weeks ago
- ☆27Updated 4 years ago
- A project security/vulnerability/risk scanning tool☆362Updated 3 years ago
- ☆141Updated last year
- A broker system between a public service and a private service☆111Updated this week