Audit NPM, Yarn, PNPM, and Bun dependencies in continuous integration environments, preventing integration if vulnerabilities are found at or above a configurable threshold while ignoring allowlisted advisories
APACHE-2.0 License
GitHub Action to publish to NPM
A better `npm publish`
🍣 The one-stop shop for official Rollup plugins
The essential toolkit for monorepo managed by lerna/yarn/pnpm/turbo/etc
npm registry proxy with on-the-fly filtering
Additional ESLint's rules for Node.js
Find newer versions of package dependencies than what your package.json allows
Automated development tasks for my own projects
🎖safely* install packages with npm or yarn by auditing them as part of your install process