Audit NPM, Yarn, PNPM, and Bun dependencies in continuous integration environments, preventing integration if vulnerabilities are found at or above a configurable threshold while ignoring allowlisted advisories
APACHE-2.0 License
Bot releases are hidden (Show)
Published by quinnturner over 5 years ago
Diff: https://github.com/IBM/audit-ci/compare/v1.5.0..v1.6.0
Features
Fixes
Chores
.travis.yml
config to use the cache: npm
shortcut and provide more docs (PR: #79)Minor release due to the new behaviour of Yarn non-JSON audit report and warning when whitelisted advisories are not found
Published by quinnturner over 5 years ago
Diff: https://github.com/IBM/audit-ci/compare/v1.4.1..v1.5.0
Fixes
Chores
Minor release due to the new behaviour of Yarn non-JSON audit report
Published by quinnturner over 5 years ago
Diff: https://github.com/IBM/audit-ci/compare/v1.4.0..v1.4.1
Features
--registry
argument (closes #46) (PR: #47)Fixes
test
directory to npm run lint
(PR: #62)Chores
Published by quinnturner over 5 years ago
Diff: https://github.com/IBM/audit-ci/compare/v1.3.1..v1.4.0
BREAKING CHANGES
Features
--directory
argument (closes #17) (PR: #53, #56)Chores
spawn
rather than exec
for NPM (closes #48) (PR: #53)Published by quinnturner over 5 years ago
Changes made for this release: https://github.com/IBM/audit-ci/compare/v1.3.0..v1.3.1
Bug fixes
ee86366d1c310ffeebb414d9150e7cf63856f5f1 - Replace error checking from stderr to error #50
Chores
982f494a5fe3c38962a1867f3b1da241daa014e1 - Update dependencies #51
Published by quinnturner almost 6 years ago
Changes made for this release: https://github.com/IBM/audit-ci/compare/v1.2.1..v1.3.0
Features:
39c3c87e - feat(config-file): Add support for reading a config file (#43)
Bug fixes:
654f51bd - fix(package.json): Change homepage and bugs url split char from : to / (#41)
Published by quinnturner almost 6 years ago
Changes made for this release: https://github.com/IBM/audit-ci/compare/v1.2.0..v1.2.1
Features:
beb57e67 - feat(advisory): Whitelist advisories (#38)
Bug fixes:
929b75c3 - Fix Yarn output parsing (#36)
e64f4b55 - fix(homepage): Added missing slash to homepage url.
Published by quinnturner almost 6 years ago
Changes made for this release: https://github.com/IBM/audit-ci/compare/v1.1.0..v1.2.0
Features
Bug fixes
No known breaking changes.
Published by quinnturner almost 6 years ago
Changes made for this release: https://github.com/IBM/audit-ci/compare/v1.0.2..v1.1.0
yargs
code and the auditing. This will support testing.lib
folder instead of index.js
.bin/audit-ci
references lib/audit-ci.js
Error
. Audit passes return the report.process.stdout.write
Travis-CI
and CircleCI
.c3a3f73 - chore: Update README to prefer devDependency installation.
2bb1ef0 - chore: Updated Travis-CI and CircleCI config documentation
147ed78 - feat(restructure): Project restructuring and improvements. (PR #15)
Published by quinnturner almost 6 years ago
Changes made for this release: https://github.com/IBM/audit-ci/compare/v1.0.1..v1.0.2
Published by quinnturner almost 6 years ago
Changes made for this release: https://github.com/IBM/audit-ci/compare/v1.0.0..v1.0.1
@babel/cli
: ^7.1.2 --> ^7.1.5@babel/core
; ^7.1.2 --> ^7.1.6@babel/preset-env
: ^7.1.0 --> ^7.1.6eslint
: ^5.3.0 --> ^5.9.0Removed babel-core
Published by quinnturner almost 6 years ago