Run Node Security check on your package.json file using Webpack
Webpack plugin that runs the Node Security Platform audit on your package.json, package-lock.json or npm-shrinkwrap.json.
NOTE: Webpack plugin is a wrapper for the nodesecurity/nsp package.
npm install --save-dev webpack-nodesecurity-plugin
In your webpack.config.js
var NodeSecurityPlugin = require('webpack-nodesecurity-plugin');
module.exports = {
// ...
plugins: [
new NodeSecurityPlugin()
]
};
module.exports = {
// ...
plugins: [
new NodeSecurityPlugin(options)
]
}
options.reporter
Type: String
Default: summary
Defines the output format of the vulnerabilities report. Available (built-in) reporters:
It is possible to install 3rd party reporters from npm or create your own one.
For more information, go to nodesecurity/nsp#output-reporters
options.verbose
Type: Boolean
Default: false
Provide more verbose output.
options.quiet
Type: Boolean
Default: false
MIT © Jakub hsz Chrzanowski