Ecosyste.ms: Packages
An open API service providing package, version and dependency metadata of many open source software ecosystems and registries.
npmjs.org "vulnerability" keyword
Top 7.7% on npmjs.org
45 versions - Latest release: 7 months ago - 1 dependent package - 1 dependent repositories - 301 downloads last month - 378 stars on GitHub - 1 maintainer
juice-shop-ctf-cli 10.0.1 π°
Capture-the-Flag (CTF) environment setup tools for OWASP Juice Shop45 versions - Latest release: 7 months ago - 1 dependent package - 1 dependent repositories - 301 downloads last month - 378 stars on GitHub - 1 maintainer
@mguillaumef/audiso 0.0.4
This module module convert npm-audit json report to sonarqube generic data issue report.4 versions - Latest release: about 2 years ago - 1 dependent package - 1 dependent repositories - 124 downloads last month - 0 stars on GitHub - 1 maintainer
Top 6.2% on npmjs.org
109 versions - Latest release: about 5 years ago - 2 dependent packages - 3 dependent repositories - 121 downloads last month - 1,772 stars on GitHub - 4 maintainers
@bearer/tslint-config 0.115.0
TSLint config for bearer team109 versions - Latest release: about 5 years ago - 2 dependent packages - 3 dependent repositories - 121 downloads last month - 1,772 stars on GitHub - 4 maintainers
Top 7.2% on npmjs.org
109 versions - Latest release: about 5 years ago - 4 dependent packages - 1 dependent repositories - 136 downloads last month - 1,772 stars on GitHub - 4 maintainers
@bearer/package-init 0.116.1
[](https://oclif.io) [ binary for recheck.2 versions - Latest release: 3 months ago - 13 downloads last month - 211 stars on GitHub - 1 maintainer
zuln 1.0.5
Zuln is an AI-powered vulnerability hunter designed to assist in identifying security vulnerabili...5 versions - Latest release: 11 months ago - 14 downloads last month - 0 stars on GitHub - 1 maintainer
vulnogram 0.1.0-rc1
Making the world safer one CVE at a time, since 2017. Tool for creating Security Advisories and C...1 version - Latest release: over 1 year ago - 1 dependent package - 3 downloads last month - 146 stars on GitHub - 1 maintainer
azgo 0.0.10
Azure Tooling with enhanced reporting, data aggregation, and UX7 versions - Latest release: about 1 year ago - 1 dependent package - 11 downloads last month - 3 stars on GitHub - 1 maintainer
Top 2.2% on npmjs.org
63 versions - Latest release: about 2 years ago - 73 dependent packages - 81 dependent repositories - 316 thousand downloads last month - 111 stars on GitHub - 1 maintainer
better-npm-audit 3.7.3 π°
Reshape into a better npm audit for the community and encourage more people to include security a...63 versions - Latest release: about 2 years ago - 73 dependent packages - 81 dependent repositories - 316 thousand downloads last month - 111 stars on GitHub - 1 maintainer
Top 4.7% on npmjs.org
2 versions - Latest release: almost 2 years ago - 3 dependent packages - 20 dependent repositories - 401 thousand downloads last month - 10 stars on GitHub - 1 maintainer
vuln-vects 1.1.0
A powerful, flexible CVSS parser, calculator and validator written for JavaScript/TypeScript.2 versions - Latest release: almost 2 years ago - 3 dependent packages - 20 dependent repositories - 401 thousand downloads last month - 10 stars on GitHub - 1 maintainer
eslint-plugin-nextjs-venerability-checker 1.0.1
Eslint plugin to check for vulnerabilities in the nextjs project.2 versions - Latest release: 2 days ago - 1 maintainer
pretty-npm-audit 1.0.4
A Nodejs library that provides a pretty version of npm audits9 versions - Latest release: almost 4 years ago - 1 dependent package - 1 dependent repositories - 27 downloads last month - 1 stars on GitHub - 1 maintainer
Top 5.2% on npmjs.org
35 versions - Latest release: over 1 year ago - 13 dependent packages - 8 dependent repositories - 7.83 thousand downloads last month - 19 stars on GitHub - 1 maintainer
npm-audit-helper 4.0.1
Helps you understand your npm audit findings so they're not too overwhelming35 versions - Latest release: over 1 year ago - 13 dependent packages - 8 dependent repositories - 7.83 thousand downloads last month - 19 stars on GitHub - 1 maintainer
tfv-nvd-types 1.3.0
National Vulnerability Database typescript definitions for data feeds.1 version - Latest release: over 1 year ago - 10 downloads last month - 0 stars on GitHub - 1 maintainer
@soos-io/sample-project-node-vulnerability-fetch 1.0.1
SOOS ( https://soos.io ) is an independent software security company, located in Winooski, VT USA...2 versions - Latest release: 4 months ago - 15 downloads last month - 0 stars on GitHub - 1 maintainer
Top 2.4% on npmjs.org
216 versions - Latest release: 6 months ago - 141 dependent packages - 361 dependent repositories - 312 thousand downloads last month - 173 stars on GitHub - 1 maintainer
yarn-audit-fix 10.0.7
The missing `yarn audit fix`216 versions - Latest release: 6 months ago - 141 dependent packages - 361 dependent repositories - 312 thousand downloads last month - 173 stars on GitHub - 1 maintainer
Top 6.1% on npmjs.org
6 versions - Latest release: about 3 years ago - 3 dependent packages - 2 dependent repositories - 909 downloads last month - 210 stars on GitHub - 1 maintainer
@makenowjust-labo/recheck 3.1.0
A vulnerable RegExp (ReDoS) checker for JavaScript (ECMA-262) RegExp.6 versions - Latest release: about 3 years ago - 3 dependent packages - 2 dependent repositories - 909 downloads last month - 210 stars on GitHub - 1 maintainer
@soos-io/sample-project-node-license-fetch 1.0.1
SOOS ( https://soos.io ) is an independent software security company, located in Winooski, VT USA...2 versions - Latest release: 4 months ago - 32 downloads last month - 0 stars on GitHub - 1 maintainer
railgun-core 0.1.0
A high-level library for web application security testers to automate, document, share, and compo...1 version - Latest release: almost 8 years ago - 2 dependent packages - 1 dependent repositories - 88 downloads last month - 1 maintainer
wpcheck 1.2.0 unpublished
Vulnerability scanner for WordPress7 versions - Latest release: over 5 years ago - 24 downloads last month - 1 maintainer
cwe-tool 1.4.1 π°
A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.23 versions - Latest release: 11 months ago - 1 dependent package - 95 downloads last month - 50 stars on GitHub - 1 maintainer
Top 5.8% on npmjs.org
21 versions - Latest release: about 2 months ago - 3 dependent packages - 2 dependent repositories - 147 downloads last month - 31 stars on GitHub - 1 maintainer
cwe-sdk 1.1.14 π°
A Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC21 versions - Latest release: about 2 months ago - 3 dependent packages - 2 dependent repositories - 147 downloads last month - 31 stars on GitHub - 1 maintainer
sandworm-mocha 1.7.0 π°
Generate your app's security profile based on your test suite πͺ±8 versions - Latest release: over 1 year ago - 9 downloads last month - 5 stars on GitHub - 1 maintainer
fetch-cwe-list 0.0.3
A simple Node.js module that fetches and parses the latest Common Weakness Enumeration (CWE) list7 versions - Latest release: over 1 year ago - 2 dependent packages - 4 downloads last month - 5 stars on GitHub - 1 maintainer
Top 7.8% on npmjs.org
8 versions - Latest release: 2 months ago - 5 dependent packages - 1 dependent repositories - 98 downloads last month - 5 stars on GitHub - 5 maintainers
@nodesecure/ossf-scorecard-sdk 3.2.1
Node.js SDK for OpenSSF scorecard8 versions - Latest release: 2 months ago - 5 dependent packages - 1 dependent repositories - 98 downloads last month - 5 stars on GitHub - 5 maintainers
@nodesecure/vulnera 1.8.0
NodeSecure vulnerabilities strategies1 version - Latest release: almost 2 years ago - 3 dependent packages - 1 dependent repositories - 18 downloads last month - 30 stars on GitHub - 5 maintainers
liability 0.0.1
Use this Node.js package to check how your automation handles liabilities such as vulnerabilities...1,995 versions - Latest release: 12 months ago - 798 downloads last month - 0 stars on GitHub - 1 maintainer
@makenowjust-labo/redos 1.2.0
A vulnerable RegExp (ReDoS) checker for JavaScript (ECMA-262) RegExp.9 versions - Latest release: over 3 years ago - 2 dependent packages - 19 downloads last month - 210 stars on GitHub - 1 maintainer
vulnerability-notifications 2.5.0
Attempt to update npm packages marked by github as vulnerable17 versions - Latest release: over 2 years ago - 1 dependent package - 1 dependent repositories - 20 downloads last month - 1 maintainer
node-red-contrib-testssl 1.10.0
node-red implementation of the testssl.sh script16 versions - Latest release: almost 3 years ago - 1 dependent package - 1 dependent repositories - 43 downloads last month - 1 stars on GitHub - 1 maintainer
@kibeo/shodan-client 3.6.2
π A Node.js/JavaScript library for accessing the Shodan API6 versions - Latest release: almost 4 years ago - 1 dependent package - 43 downloads last month - 196 stars on GitHub - 1 maintainer
Top 3.6% on npmjs.org
24 versions - Latest release: about 4 years ago - 4 dependent packages - 17 dependent repositories - 2.15 thousand downloads last month - 196 stars on GitHub - 1 maintainer
shodan-client 3.2.0 deprecated
π A Node.js/JavaScript library for accessing the Shodan API24 versions - Latest release: about 4 years ago - 4 dependent packages - 17 dependent repositories - 2.15 thousand downloads last month - 196 stars on GitHub - 1 maintainer
npm-audit-visualizer 1.0.0-alpha.4
a web-based tool to visualize audit reports generated by npm audit5 versions - Latest release: 14 days ago - 247 downloads last month - 0 stars on GitHub - 1 maintainer
validate-things 1.0.2
Validate your data in server or client for security7 versions - Latest release: about 1 month ago - 133 downloads last month - 2 stars on GitHub - 1 maintainer
@packasso/yarn-audit 2.1.17
yarn audit43 versions - Latest release: 7 months ago - 2 dependent packages - 1 dependent repositories - 9 downloads last month - 2 stars on GitHub - 2 maintainers
reverse-shell 1.1.3 π°
Reverse Shell as a Service - https://reverse-shell.sh15 versions - Latest release: over 3 years ago - 1 dependent repositories - 47 downloads last month - 1,784 stars on GitHub - 1 maintainer
@sandworm/audit 1.56.1 π°
Security & License Compliance For Your App's Dependencies πͺ±59 versions - Latest release: 7 months ago - 7.26 thousand downloads last month - 463 stars on GitHub - 2 maintainers
vunr 0.1.1
Vulnerability Scanner2 versions - Latest release: almost 2 years ago - 2 dependent packages - 15 downloads last month - 1 maintainer
error-sanitizer 1.0.0
Express middleware for error sanitize1 version - Latest release: over 1 year ago - 1 dependent package - 9 downloads last month - 0 stars on GitHub - 1 maintainer
@sooho/advisory-db 0.3.4
A community-driven vulnerability database of smart contract2 versions - Latest release: about 4 years ago - 2 dependent packages - 1 dependent repositories - 5 downloads last month - 38 stars on GitHub - 3 maintainers
npm-check-affected 0.1.0
Check 'npm ls' for installed packages matching a given version spec1 version - Latest release: about 10 years ago - 1 dependent package - 1 dependent repositories - 5 downloads last month - 2 stars on GitHub - 1 maintainer
@sooho/cli 0.3.4
CLI tool to interact with SOOHO10 versions - Latest release: about 4 years ago - 1 dependent package - 1 dependent repositories - 13 downloads last month - 38 stars on GitHub - 3 maintainers
@impulsed/evat 0.0.1
A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.1 version - Latest release: over 2 years ago - 1 dependent package - 5 downloads last month - 1 maintainer
@reshiftsecurity/reshift-plugin-npm 2.0.2
Security vulnerability scanner11 versions - Latest release: almost 3 years ago - 1 dependent package - 29 downloads last month - 1 stars on GitHub - 2 maintainers
Top 4.8% on npmjs.org
14 versions - Latest release: over 1 year ago - 4 dependent packages - 3 dependent repositories - 6.97 thousand downloads last month - 463 stars on GitHub - 1 maintainer
sandworm 1.18.0 π°
Beautiful Visualizations For Your App's Dependencies πͺ±14 versions - Latest release: over 1 year ago - 4 dependent packages - 3 dependent repositories - 6.97 thousand downloads last month - 463 stars on GitHub - 1 maintainer
@softwaresecurednpm/npm_plugin 1.0.29211111
Dependency checker and issue reporter38 versions - Latest release: over 5 years ago - 1 dependent package - 3 downloads last month - 1 stars on GitHub - 1 maintainer
levitate 0.1.0
Levitate is an exploit development platform1 version - Latest release: over 10 years ago - 1 dependent package - 1 dependent repositories - 4 downloads last month - 8 stars on GitHub - 1 maintainer
scansafe 1.0.1
Scans source code packages for potential javascript vulnerabilities listed as strings or regular ...2 versions - Latest release: about 7 years ago - 1 dependent repositories - 4 downloads last month - 0 stars on GitHub - 1 maintainer
rocatest 1.0.0
Test RSA keys for the ROCA vulnerability1 version - Latest release: over 6 years ago - 1 dependent repositories - 8 downloads last month - 2 stars on GitHub - 1 maintainer
@trendyol-js/safe-redirect 1.7.2
Resolves open-redirection issue10 versions - Latest release: over 2 years ago - 1 dependent package - 298 downloads last month - 1 maintainer
security-report 1.1.4
a CLI to quickly report a security vulnerability10 versions - Latest release: almost 4 years ago - 1 dependent repositories - 37 downloads last month - 5 stars on GitHub - 1 maintainer
@thefaultvault/tfv-nvd-types 1.3.0
National Vulnerability Database typescript definitions for data feeds.4 versions - Latest release: over 4 years ago - 2 dependent packages - 1 dependent repositories - 104 downloads last month - 0 stars on GitHub - 1 maintainer
nsp-audit-package 0.2.0
offers a simple library to audit your package.json or a stream of package.json2 versions - Latest release: about 9 years ago - 2 dependent packages - 2 dependent repositories - 25 downloads last month - 2 maintainers
release-verification 3.1.0
verify released packages match github6 versions - Latest release: over 4 years ago - 1 dependent repositories - 9 downloads last month - 0 stars on GitHub - 2 maintainers
snyk-recursive 0.0.12
Run Snyk recursively in valid subdirectories.12 versions - Latest release: almost 4 years ago - 1 dependent repositories - 33 downloads last month - 1 stars on GitHub - 1 maintainer
@nitra/testssl 2.0.1
testssl.sh install script2 versions - Latest release: over 4 years ago - 2 dependent packages - 3 downloads last month - 0 stars on GitHub - 1 maintainer
@luciddr34m3r/nvd 0.0.1
A JavaScript library for dealing with NVD, CVEs, and CPE strings.1 version - Latest release: over 3 years ago - 1 dependent package - 4 downloads last month - 0 stars on GitHub - 1 maintainer
owdit 1.2.0
Audits dependencies for known vulnerabilities.3 versions - Latest release: over 6 years ago - 1 dependent package - 1 dependent repositories - 13 downloads last month - 1 stars on GitHub - 1 maintainer
sitecheck 0.0.5
Open Source web application security scanner5 versions - Latest release: over 7 years ago - 1 dependent repositories - 35 downloads last month - 3 stars on GitHub - 1 maintainer
urbanjs-tool-retire 1.1.0
Urbanjs tool to check dependencies for vulnerability issues5 versions - Latest release: over 6 years ago - 3 dependent packages - 1 dependent repositories - 14 downloads last month - 8 stars on GitHub - 1 maintainer
urbanjs-tool-nsp 1.1.0
Urbanjs tool to check dependencies for vulnerability issues4 versions - Latest release: over 6 years ago - 3 dependent packages - 1 dependent repositories - 5 downloads last month - 8 stars on GitHub - 1 maintainer
reshift_npm_plugin 1.1.91
Dependency checker and issue reporter2 versions - Latest release: over 5 years ago - 1 dependent package - 6 downloads last month - 1 stars on GitHub - 1 maintainer
@passmarked/ssl 1.0.10
Rules that relate to checking the SSL configuration of each individual resolved server from the d...10 versions - Latest release: almost 6 years ago - 2 dependent packages - 1 dependent repositories - 11 downloads last month - 6 stars on GitHub - 1 maintainer
ae-cvss-calculator 1.0.1
A CVSS vector modeling and score calculation implementation for all CVSS versions by {metæffekt}.1 version - Latest release: about 1 month ago - 65 downloads last month - 4 stars on GitHub - 1 maintainer
sandworm-jest 1.5.0 π°
Security Snapshot Testing Inside Your Jest Test Suite πͺ±5 versions - Latest release: over 1 year ago - 1 dependent package - 10 downloads last month - 17 stars on GitHub - 1 maintainer
defectdojo-report 0.2.0
Export the security debt of an application from DefectDojo2 versions - Latest release: 2 months ago - 91 downloads last month - 4 stars on GitHub - 1 maintainer
Top 4.6% on npmjs.org
11 versions - Latest release: almost 2 years ago - 7 dependent packages - 10 dependent repositories - 809 downloads last month - 30 stars on GitHub - 5 maintainers
@nodesecure/vuln 1.7.0 deprecated
NodeSecure vulnerabilities strategies11 versions - Latest release: almost 2 years ago - 7 dependent packages - 10 dependent repositories - 809 downloads last month - 30 stars on GitHub - 5 maintainers
exploitsearch 2.0.3 deprecated
A library for accessing ExploitSearch.net API, http://www.exploitsearch.net/26 versions - Latest release: about 7 years ago - 2 dependent packages - 6 dependent repositories - 14 downloads last month - 5 stars on GitHub - 1 maintainer
add-vulnerabilities-to-bom 0.0.3 removed
Adds known vulnerabilities to BOM3 versions - Latest release: about 2 years ago - 1 dependent package - 38 downloads last month - 0 stars on GitLab.com - 1 maintainer
certfr-loader 2.0.6 removed
Module to load certfr from the CERT FR29 versions - Latest release: over 5 years ago - 1 dependent package - 1 dependent repositories - 60 downloads last month - 0 stars on GitHub - 1 maintainer
recheck-darwin-x64 4.0.0 removed
The macOS 64-bit binary for recheck.1 version - Latest release: over 2 years ago - 1 dependent package - 2 downloads last month - 187 stars on GitHub - 1 maintainer
Related Keywords
security
54
vulnerabilities
22
audit
17
npm
13
javascript
12
cve
11
owasp
10
redos
10
node
10
eslint-plugin
10
redos-checker
10
scala
10
security-tools
9
cli
8
compliance
8
appsec
7
nodejs
6
cwe
6
security-automation
5
security-audit
5
devsecops
5
dependencies
5
sbom
5
nsp
5
security-scanner
4
sast
4
privacy
4
gdpr
4
devsecops-tools
4
static-analysis
4
static-code-analysis
4
typescript
4
dataflow
4
code-quality
4
exploit
4
regexp
4
vulnerability-scanners
4
nvd
4
scan
4
test
4
testing
4
scanner
3
CVE
3
vuln
3
cvss
3
json
3
weakness
3
mitre
3
web security
3
dependency
3
report
3
0day
3
client
3
API
3
security-assessments
2
smart-contract
2
sooho
2
command line
2
softwaresecured
2
exploits
2
compile
2
development
2
oss
2
open source
2
npm-package
2
dast
2
governance
2
stack
2
static-analyzer
2
licenses
2
@soos-io
2
sca
2
soos
2
thefaultvault
2
tfv
2
cpe
2
advisories
2
scoring
2
data
2
Shodan
2
testssl
2
d3-visualization
2
dependencies-graph
2
update
2
dependencies-tree
2
license-checking
2
wg
2
strategy
2
strategies
2
nodesecure
2
license-compliance
2
snapshot-testing
2
license-management
2
permissions
2
supply-chain
2
dynamic-analysis
2
SOOHO
2
contract
2
solidity
2
automated-testing
2