npm-scanner

How to Scan Projects for Security Issues

Scan a Single Project

./npm-scanner.sh scan --project ~/code/my-app

Scan All Projects Under a Directory

./npm-scanner.sh scan --project ~/code

Scan Global Packages

./npm-scanner.sh scan --global

Limit Scan to Specific Number of Packages

./npm-scanner.sh scan --global --limit 50

Use Random Sampling for Large Codebases

./npm-scanner.sh scan --project ~/code -n 100 --random

Run Scans in Parallel

./npm-scanner.sh scan --project ~/code --parallel

Exclude Directories

./npm-scanner.sh scan --project ~/code \
  -e test \
  -e __tests__ \
  -e fixtures

Get Summary Output

./npm-scanner.sh scan --project ~/code --summary

Save Reports to Custom Location

./npm-scanner.sh scan --project ~/code -o ~/security-audits/$(date +%Y-%m)

Skip Confirmation Prompt

./npm-scanner.sh scan --project ~/code --yes

This site is open source. Improve this page.