UNPKG

nsp

Version:

The Node Security (nodesecurity.io) command line interface

github.com/nodesecurity/nsp

nodesecurity/nsp

59 lines (53 loc) 1.45 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
'use strict'; const Command = require('../lib/command'); const Nsp = require('../'); exports.command = 'check [path]'; exports.description = 'checks a project for known vulnerabilities against the Node Security API'; exports.builder = { 'warn-only': { boolean: true, default: false, description: 'display vulnerabilities but do not exit with an error code', group: 'Output:' }, offline: { boolean: true, description: 'execute checks without an internet connection', group: 'Offline:' }, advisories: { description: 'path to local advisories database used in offline checks', group: 'Offline:' }, 'cvss-threshold': { alias: 'threshold', description: 'cvss threshold that must be reached in order to exit with an error', type: 'number', group: 'Output:' }, 'cvss-filter': { alias: 'filter', description: 'cvss score below which findings will be hidden', type: 'number', group: 'Output:' }, exceptions: { type: 'array', description: 'advisories to ignore while running this check', default: [], group: 'Project:' }, org: { description: 'nodesecurity organization your project is contained in', implies: 'integration', group: 'Project:' }, integration: { description: 'your project\'s uuid', implies: 'org', group: 'Project:' } }; exports.handler = Command.wrap('check', (args) => { return Nsp.check(args); });