issues
search
IBM
/
audit-ci
Audit NPM, Yarn, PNPM, and Bun dependencies in continuous integration environments, preventing integration if vulnerabilities are found at or above a configurable threshold while ignoring allowlisted advisories
Apache License 2.0
263
stars
43
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Add ignore to linguist for Yarn Berry
#296
quinnturner
closed
1 year ago
0
Update CircleCI base image
#295
quinnturner
closed
1 year ago
0
Release 6.5.0
#294
quinnturner
closed
1 year ago
1
Added support for registry flag for pnpm
#293
DiogoVCS
closed
1 year ago
0
Add support for registry flag for PNPM
#292
DiogoVCS
closed
1 year ago
1
Warn invalid NSP empty record
#291
quinnturner
closed
1 year ago
1
Release 6.4.1
#290
quinnturner
closed
1 year ago
0
fix: fix config parsing when using objects in allowlist
#289
kyletsang
closed
1 year ago
3
Invalid JSON config file when using new allowlist NSPRecord syntax
#288
kyletsang
closed
1 year ago
3
chore: Update action dependencies
#287
quinnturner
closed
1 year ago
0
Update devDependencies and release 6.4.0
#286
quinnturner
closed
1 year ago
0
Update devDependencies and release 6.4.0
#285
quinnturner
closed
1 year ago
0
feat: implement allowlist records
#284
kyletsang
closed
1 year ago
8
chore: fix yarn-auditor tests
#283
kyletsang
closed
2 years ago
0
Fail on unmatched ignores
#282
villesau
opened
2 years ago
1
Let the severity level influence the json output
#281
alexanderameye
opened
2 years ago
1
[Feature] Support Gitlab SAST report-type
#280
danniehansen
opened
2 years ago
2
WIP: allowlist records
#279
quinnturner
closed
1 year ago
3
Allow notes for allowlist items
#278
villesau
closed
1 year ago
2
Add expiration time for allow list items
#277
villesau
closed
1 year ago
1
chore: Update CodeQL
#276
quinnturner
closed
2 years ago
0
chore: remove husky and pretty-quick
#275
quinnturner
closed
2 years ago
0
chore: Release 6.3.0
#274
quinnturner
closed
2 years ago
0
docs: Pin running audit-ci to major version
#273
quinnturner
closed
2 years ago
0
fix: Downgrade sinon for Node 12 support
#272
quinnturner
closed
2 years ago
0
feat: Add support for importing audit-ci
#271
quinnturner
closed
2 years ago
0
chore: Improve tests and typing & package d.ts files.
#270
quinnturner
closed
2 years ago
0
chore: Remove can't find package.json warning.
#269
quinnturner
closed
2 years ago
0
chore: Improve test and code type-safety
#268
quinnturner
closed
2 years ago
0
feat: Add coverage checks and minimum levels
#267
quinnturner
closed
2 years ago
0
fix: improve gitignore to avoid adding yarn files
#266
quinnturner
closed
2 years ago
0
Recommend pinning to commit SHA or release tag
#265
joebowbeer
closed
4 months ago
3
chore(deps): bump minimist from 1.2.5 to 1.2.6 in /test/yarn-duplicate-paths
#264
dependabot[bot]
closed
2 years ago
1
chore(deps): bump base64url from 2.0.0 to 3.0.0 in /test/yarn-workspace
#263
dependabot[bot]
closed
2 years ago
1
chore(deps-dev): bump open from 0.0.5 to 6.0.0 in /test/yarn-berry-workspace
#262
dependabot[bot]
closed
2 years ago
1
chore(deps-dev): bump open from 0.0.5 to 6.0.0 in /test/yarn-workspace
#261
dependabot[bot]
closed
2 years ago
1
chore(deps): bump base64url from 2.0.0 to 3.0.0 in /test/yarn-berry-workspace
#260
dependabot[bot]
closed
2 years ago
1
chore: Release 6.2.1
#259
quinnturner
closed
2 years ago
0
fix: Handle NPM 7+'s message (error) response
#258
quinnturner
closed
2 years ago
0
fix: PNPM audit registry warning
#257
quinnturner
closed
2 years ago
0
fix: minor lint
#256
quinnturner
closed
2 years ago
0
fix: Handle unhandled promise rejections in bin
#255
quinnturner
closed
2 years ago
0
docs: Add a ton of detail to allowlist documentation.
#254
quinnturner
closed
2 years ago
0
docs: update readme to add allowlist formats
#253
andrewdetorres
closed
2 years ago
3
Support allowlisting private packages by module
#252
quinnturner
closed
2 years ago
7
chore(deps): Add audit-types
#251
quinnturner
closed
2 years ago
0
chore: fix typo in lint:fix script
#250
kyletsang
closed
2 years ago
0
chore: Release 6.2.0
#249
quinnturner
closed
2 years ago
0
fix: fix Yarn Berry workspace audit when skip-dev=true
#248
kyletsang
closed
2 years ago
4
Cannot convert undefined or null to object Exiting
#247
agnosticcloud
closed
2 years ago
9
Previous
Next