npm audit to the rescue

Martin Reinhardt
Jun 5, 2019 · 2 min read
Image for post
Image for post

Automate Code Auditing

In addition, the reports generated by npm audit include information on the location and dependency of the vulnerability found. They also include a link to more information about the issue on the Node Security Platform recently adopted by npm. Even during the installation of new dependencies via npm install, an automatic security check is now performed and a message is issued informing about any existing vulnerabilities. For a complete report, however, npm audit must be used, which is available free of charge to all users of the corresponding npm versions.

Raise awareness of security vulnerabilities

npm hopes that the new npm audit will raise developers’ awareness of the problem of vulnerabilities in open source software. The goal is to help reduce the number of dependencies within the JavaScript ecosystem that contain vulnerabilities and make the ecosystem as a whole more secure. More information on the automated audit of dependencies in code can be found in the npm blog and in the official documentation of npm audit.

Holisticon Consultants

voices of holistikoenner/innen

Martin Reinhardt

Written by

IT Architect from Hamburg

Holisticon Consultants

Promise! We listen attentively. We understand. And we do what we’re best at: honest technological and methodical management and IT consulting. Every day. With passion and talent. And the best people that we can find.

Martin Reinhardt

Written by

IT Architect from Hamburg

Holisticon Consultants

Promise! We listen attentively. We understand. And we do what we’re best at: honest technological and methodical management and IT consulting. Every day. With passion and talent. And the best people that we can find.

Welcome to a place where words matter. On Medium, smart voices and original ideas take center stage - with no ads in sight. Watch
Follow all the topics you care about, and we’ll deliver the best stories for you to your homepage and inbox. Explore
Get unlimited access to the best stories on Medium — and support writers while you’re at it. Just $5/month. Upgrade

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store