command line tools

This package consists in a CLI tool that enables developers or CI tools to check if their Node.js projects are using packages with known and public vulnerable dependencies. The vulnerability database is provided by the Node Security Project

Badgers

![Gitter](https://badges.gitter.im/Join Chat.svg)

Installation

Through npm:

npm i nsp -g

Through GitHub:

git clone [email protected]:nodesecurity/nsp.git
cd nsp
npm link

Usage

`nsp audit-shrinkwrap`

Takes an existing npm-shrinkwrap.json file and submits it for validation to nodesecurity.io

Example:

$ nsp audit-shrinkwrap
Name     Installed  Patched  Vulnerable Dependency
connect    2.7.5    >=2.8.1  nodesecurity-jobs > kue > express

`nsp audit-package`

Takes an existing package.json file and submits it for validation to nodesecurity.io

Example:

$ nsp audit-package
Name     Installed  Patched  Vulnerable Dependency
connect    2.7.5    >=2.8.1  nodesecurity-jobs > kue > express

Name		Name	Last commit message	Last commit date
Latest commit History 163 Commits
bin		bin
commands		commands
lib		lib
tests		tests
.gitignore		.gitignore
.jscsrc		.jscsrc
.jshintignore		.jshintignore
.jshintrc		.jshintrc
.travis.yml		.travis.yml
CODE_OF_CONDUCT.md		CODE_OF_CONDUCT.md
LICENSE		LICENSE
README.md		README.md
npm-shrinkwrap.json		npm-shrinkwrap.json
package.json		package.json

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

command line tools

Badgers

Installation

Usage

`nsp audit-shrinkwrap`

`nsp audit-package`

About

Releases

Packages

Languages

License

Hewlett-Packard-ESS/nsp

Folders and files

Latest commit

History

Repository files navigation

command line tools

Badgers

Installation

Usage

nsp audit-shrinkwrap

nsp audit-package

About

Resources

License

Code of conduct

Stars

Watchers

Forks

Releases

Packages 0

Languages

`nsp audit-shrinkwrap`

`nsp audit-package`

Packages