nodejs-dependency-vuln-assessments

MIT License

Stars
12
Committers
4
View Code on GitHub View on X
Ecosystems: Node.js

node-js-dependency-vuln-assessments

This repo is used to

  1. Run automated checks for vulnerabilities in Node.js dependencies that have
    already been made public.
  2. Track and communicate information about dependency vulnerabilities that
    are public and have not yet been addressed.

Automated checks are currently run through a GitHub action using dep_checker.

DO NOT REPORT OR DISCUSS VULNERABILITIES THAT ARE NOT ALREADY PUBLIC IN THIS REPO. Please report new vulnerabilities either to the projects for a specific dependency or report to the Node.js project as outlined in the Node.js SECURITY.md file.

Related Projects
NPM-Vuln-PoC

Vulnerabilities discovered in npm packages [Berkeley PL & Security Research]

17 Apr 2017 37
node-updated

check for updated package.json dependencies

26 Oct 2018 5
NodeGoat

The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 security risks apply...

21 Oct 2013 1,872
lockfile-lint

Lint an npm or yarn lockfile to analyze and detect security issues

01 Jun 2019 770
pie-my-vulns

Visualize your project security vulnerabilities as a pie chart in the terminal

24 Dec 2019 24
nodejs.org

The Node.js® Website

19 Jun 2015 5,578
npm-api-dependents

npm-api plugin for streaming an npm module's dependents information

23 Mar 2016 9
awesome-nodejs-security

Awesome Node.js Security resources

23 Oct 2018 2,563
nodejs-cve-checker

Guarantee Node.js disclosed the CVEs after a Security Release

11 Dec 2023 3
security-report

Report a security vulnerability

10 Nov 2019 5
nodejsscan

nodejsscan is a static security code scanner for Node.js applications.

27 Feb 2015 2,326
is-website-vulnerable

finds publicly known security vulnerabilities in a website's frontend JavaScript libraries

05 Oct 2019 1,919