Lint an npm or yarn lockfile to analyze and detect security issues
APACHE-2.0 License
Bot releases are hidden (Show)
The 1.x line is frozen - features and bugfixes now happen on https://github.com/yarnpkg/berry
npm registry proxy with on-the-fly filtering
Report a security vulnerability
the package manager for JavaScript
Plugin manager and installer for Node.JS
A better `npm publish`
🧶 A semantic-release plugin to publish npm packages with Yarn. Comes with built-in support for mo...
Read and write lockfiles with reasonable losses
Safely generate an npm lockfile and output it to the filename of your choice.
Convert yarn.lock to package-lock.json and vice versa
A NodeJS package to test how package.json scripts are being scheduled by different package managers.
Work with yarn/npm packages locally like a boss.
🎖safely* install packages with npm or yarn by auditing them as part of your install process
Fast, resilient, reproducible builds with npm install.
Fast, disk space efficient package manager