# npm-audit

runs security checks for node projects

## Steps
### npm-audit
```
'npm audit' is run against the project files to scan for vulnerabilities in dependencies
```

## TODO
- expand this repository to do more than dependency steps, as of now it doesn't make a ton of sense for this to be its own action/repo
- add static code analysis step