-
**Do you want to request a *feature* or report a *bug*?**
A bug
**What is the current behavior?**
Currently, yarn audit seems to analyze only dependencies provided by `package.json`, ignoring `ya…
MRoci updated
5 years ago
-
- [x] I'd be willing to implement this feature ([contributing guide](https://yarnpkg.com/advanced/contributing))
- [ ] This feature is important to have in this repository; a contrib plugin wouldn't…
-
Hi, first of all thanks for providing and maintaining this package.
I've noticed an interesting issue relating to https://github.com/yarnpkg/yarn/issues/7404
When the yarn audit runs out of memo…
-
-bash: yarn-audit-fix: command not found
-
**Do you want to request a *feature* or report a *bug*?**
Bug.
**What is the current behavior?**
In a Yarn Workspaces package, `yarn audit` reports `0 vulnerabilities found` in a workspace pa…
-
**Do you want to request a *feature* or report a *bug*?**
Bug
**What is the current behavior?**
For some reason when I run `yarn audit` on a workspaces yarn project it only verifies the dependenc…
-
I'm using [dependency-check==0.6.0](https://pypi.org/project/dependency-check/0.6.0/) from pypi to perform a scan with command`dependency-check --scan /my/scan/path --format JSON`. The scan process s…
-
Hello,
yarn audit show this output jose dependency is vulnerable is it possible to upgrade or replace it ?
┌───────────────┬──────────────────────────────────────────────────────────────┐
│ m…
-
If this is aiming to be a drop in replacement it would be useful to also support the --json output feature of `yarn audit`
-
**Do you want to request a *feature* or report a *bug*?**
feature
**What is the current behavior?**
`yarn audit` will report all issues and there is no way to suppress an issue that does no…