2025-05-10 18:21:18 +00:00
|
|
|
# npm-audit
|
|
|
|
|
|
2025-05-10 14:42:12 -04:00
|
|
|
runs security checks for node projects
|
|
|
|
|
|
|
|
|
|
## Steps
|
|
|
|
|
### npm-audit
|
|
|
|
|
```
|
|
|
|
|
'npm audit' is run against the project files to scan for vulnerabilities in dependencies
|
|
|
|
|
```
|
|
|
|
|
|
|
|
|
|
## TODO
|
|
|
|
|
- expand this repository to do more than dependency steps, as of now it doesn't make a ton of sense for this to be its own action/repo
|
|
|
|
|
- add static code analysis step
|
