-
Je viens d'installer nodesecure/cli mais je rencontre une erreur lors de la commande nsecure auto express
`node:internal/modules/cjs/loader:956
const err = new Error(message);
^
…
-
The goal of this task is to create/generate a **static** webpage to be able to check our keys and translation (in all languages) from a github URL.
We need a script to dynamically generate the stat…
-
Hey NodeSecure,
We at the [@CybercentreCanada](https://github.com/CybercentreCanada) love JS-X-Ray and have it tightly integrated into our JavaScript analysis service [JsJaws](https://github.com/Cy…
-
Here's my truncated run output with the following config:
```yaml
name: 'NodeSecure Continuous Integration'
on:
push:
branches:
- main
pull_request:
jobs:
validation:
…
-
The idea is to implement the [scorecard](https://github.com/ossf/scorecard) by the Open Source Security Foundation (OpenSSF).
We can take inspiration on the tool [deps.dev](https://deps.dev/) who a…
-
Right now the scanner doesn't scan for an NPM package when this is the root project or any `git+` resolver.
However this kind of info could be useful in the payload to be sure in the UI how to reac…
-
It could be cool to add a warning in the CLI when the env `NODE_SECURE_TOKEN` is missing. Because without this env NPM has a pretty low ratelimit (so you can rapidly get errors).
The information is…
-
I'd like to report a security issue in @nodesecure/cli. What is the preferred way to report a vulnerability?
https://github.com/NodeSecure/cli/blob/master/SECURITY.md points to the Node.js ecosyste…
-
Hi, does this action support yarn projects ?
My test ends up with `error loadVirtual requires existing shrinkwrap file`
thanks
-
Issue to discuss and prepare for the next NodeSecure team meeting.
**When**: 12:30 (UTC +2)
**Where**: Discord
> Everyone is welcome and can participate by joining the voice channel on Discord
…