Audit NPM, Yarn, PNPM, and Bun dependencies in continuous integration environments, preventing integration if vulnerabilities are found at or above a configurable threshold while ignoring allowlisted advisories
When using bun, audit-ci can't find which package manager is used
error spawn when using:
bunx audit-ci
bun audit-ciif audit-ci script exist in package.json
Error: Cannot establish package-manager type, missing package-lock.json, yarn.lock, and pnpm-lock.yaml.
at resolvePackageManagerType (file:///tmp/bunx-1000-audit-ci@latest/node_modules/audit-ci/dist/chunk-FA3SOWIW.js:374:13)
at mapArgvToAuditCiConfig (file:///tmp/bunx-1000-audit-ci@latest/node_modules/audit-ci/dist/chunk-FA3SOWIW.js:413:34)
at runYargs (file:///tmp/bunx-1000-audit-ci@latest/node_modules/audit-ci/dist/chunk-FA3SOWIW.js:582:25)
at async runAuditCi (file:///tmp/bunx-1000-audit-ci@latest/node_modules/audit-ci/dist/chunk-FA3SOWIW.js:1335:25)
When using bun, audit-ci can't find which package manager is used
error spawn when using:
bunx audit-cibun audit-ciif audit-ci script exist in package.json