Search results

auditjs

Audit dependencies to identify known vulnerabilities and maintenance problems

• Audit
• Scan
• Vulnerability
• CPE
• CVE
• CWE
• OSSIndex
• Artie
• Nexus
• Sonatype
• SCA
• SBOM
• Security
• Advisories

ossindex

published 4.0.41 • 5 months agopublished 4.0.41 5 months ago

juice-shop-ctf-cli

Capture-the-Flag (CTF) environment setup tools for OWASP Juice Shop

• web security
• web application security
• webappsec
• owasp
• pentest
• pentesting
• security
• vulnerable
• vulnerability
• broken
• capture the flag
• ctf
• ctfd
• fbctf
• View more

bkimminich

published 10.0.1 • 2 months agopublished 10.0.1 2 months ago

yarn-audit-fix

The missing `yarn audit fix`

• yarn-audit-fix
• yarn audit fix
• audit
• vulnerability
• security

antongolub

published 10.0.7 • 13 days agopublished 10.0.7 13 days ago

vuln-vects

A powerful, flexible CVSS parser, calculator and validator written for JavaScript/TypeScript.

• typescript
• cvss
• common
• vulnerability
• scoring
• system
• security
• cyber

breachlock

published 1.1.0 • a year agopublished 1.1.0 a year ago

npm-audit-helper

Helps you understand your npm audit findings so they're not too overwhelming

• npm
• audit
• security
• vulnerability
• pipe
• nsp

rouanw

published 4.0.1 • a year agopublished 4.0.1 a year ago

recheck

The trustworthy ReDoS checker

• redos
• regexp
• security
• vulnerability

makenowjust

published 4.4.5 • 10 months agopublished 4.4.5 10 months ago

security-report

a CLI to quickly report a security vulnerability

• security
• vulnerability
• vulnerabilities
• report
• disclosure
• responsible disclosure
• disclose

lirantal_bot

published 1.1.4 • 3 years agopublished 1.1.4 3 years ago

cwe-sdk

A Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC

• cwe
• mitre
• CAPEC
• cve
• weakness
• vulnerability
• security

lirantal_bot

published 1.1.12 • 21 days agopublished 1.1.12 21 days ago

@nodesecure/ossf-scorecard-sdk

Node.js SDK for OpenSSF scorecard

• ossf
• openssf
• scorecard
• security
• opensource
• maintainer
• vulnerability
• best
• practices

pierred

published 3.1.0 • 10 days agopublished 3.1.0 10 days ago

error-sanitizer

Express middleware for error sanitize

• http
• express
• middleware
• atack
• prevent
• Data exposure
• pollution
• security
• sensitive
• data
• protection
• sanitize
• owasp
• error
• View more

r9n

published 1.0.0 • a year agopublished 1.0.0 a year ago

cwe-tool

A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.

• cwe
• cli
• command line
• owasp
• mitre
• cve
• weakness
• vulnerability
• enumeration

lirantal_bot

published 1.4.1 • 6 months agopublished 1.4.1 6 months ago

liability

Use this Node.js package to check how your automation handles liabilities such as vulnerabilities and deprecations.

• vulnerability
• deprecated
• warning
• audit
• fix
• update

samueldietz

published 24.7.4-fixed • 3 months agopublished 24.7.4-fixed 3 months ago

express-secure-headers

Secure your Express apps by setting various HTTP headers

• security
• express
• nodejs
• xss
• x-powered-by
• cors
• dns
• clickjacking
• noSniff
• no-cache
• attack
• Vulnerability
• csrf

yasserameur

published 1.0.0 • 4 years agopublished 1.0.0 4 years ago

@soos-io/sample-project-node-vulnerability-fetch

SOOS ( https://soos.io ) is an independent software security company, located in Winooski, VT USA, building security software for your team. Used for testing purposes, this tool is an example of fetching vulnerability information from SOOS.

• soos
• sca
• @soos-io
• cve
• vulnerability
• vulnerabilities
• licenses
• sbom
• governance
• dast
• open source
• oss

soosintegrations

published 1.0.0 • 10 months agopublished 1.0.0 10 months ago

@soos-io/sample-project-node-license-fetch

SOOS ( https://soos.io ) is an independent software security company, located in Winooski, VT USA, building security software for your team. Used for testing purposes, this tool is an example of fetching software license information from SOOS.

• soos
• sca
• spdx
• license
• @soos-io
• cve
• vulnerability
• vulnerabilities
• licenses
• sbom
• governance
• dast
• open source
• oss

soosintegrations

published 1.0.0 • 10 months agopublished 1.0.0 10 months ago

backstage-plugin-blackduck

Welcome to the `backstage-plugin-blackduck` plugin!

• BlackDuck
• Vulnerability
• Backstage

deepan10

published 1.2.0 • a month agopublished 1.2.0 a month ago

zuln

Zuln is an AI-powered vulnerability hunter designed to assist in identifying security vulnerabilities in code. It leverages AI completion and Language Model Learning (LLM) techniques to analyze code and extract patterns indicative of vulnerabilities. This

• vulnerability
• scanner

mykiimike

published 1.0.5 • 5 months agopublished 1.0.5 5 months ago

vulnerability-notifications

Attempt to update npm packages marked by github as vulnerable

• fantasyui-com
• vulnerability
• notifications
• update
• npm
• packages

fantasyui.com

published 2.5.0 • 2 years agopublished 2.5.0 2 years ago

@packasso/yarn-audit

yarn audit

• preset
• audit
• vulnerability
• security

qiwibot

published 2.1.17 • 2 months agopublished 2.1.17 2 months ago

@deepan10/backstage-plugin-blackduck

Welcome to the `backstage-plugin-blackduck` plugin!

• BlackDuck
• Vulnerability
• Backstage

deepan10

published 1.0.3 • 2 months agopublished 1.0.3 2 months ago