npm audit to the rescue

Martin Reinhardt
Jun 5, 2019 · 2 min read

With the release of npm 6.0, npm audit was announced, a new tool designed to increase security when working with open source code. Now npm audit is available and is not only available in npm@6, but can also be used with previous versions.

npm audit performs a security review of the dependency tree of projects, which is performed immediately and is based on a comparison with the vulnerabilities recorded in the…