security-audit
Audits npm and yarn projects
Installation
npm install security-auditHow to use
npx security-auditOptions
| Args | Alias | Description |
|---|---|---|
| -p | --package-manager | Choose a package manager auto, npm, yarn |
| -a | --advisories | Whitelisted advisory ids (default []) |
| -w | --whitelist | Whitelisted package names (default []) |
| -l | --audit-level | Fail an audit only if the results include a vulnerability with the given level or higher info, low, moderate, high, critical |
| -d | --directory | The directory containing the package.json to audit (default ./) |
| --registry | The registry to resolve packages by name and version | |
| --max-attempts | The max number of attempts to call an unavailable registry before failing (default 5) |