estree-ast-utils
ci
estree-ast-utils | ci | |
---|---|---|
2 | 4 | |
2 | 21 | |
- | - | |
0.0 | 4.8 | |
9 months ago | 9 days ago | |
JavaScript | TypeScript | |
MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
estree-ast-utils
-
JS-X-Ray 6.0
Almost a year of work on this new mechanism / class that brings a whole new dimension to JS-X-Ray.
-
A technical tale of NodeSecure - Chapter 2
Since i created my own set of AST utilities including getMemberExpressionIdentifier.
ci
-
JS-X-Ray 6.0
i18n (for translation in CI or CLI).
-
📦 Everything you need to know: package managers
@nodesecure/ci, a tool allowing to run SAST, SCA and many more analysis in CI/CDs or in a local environment
- NodeSecure - What's new in 2022 ?
-
Make your JavaScript project safer by using this workflow
@nodesecure/ci brings together a set of tools to identify dependencies vulnerabilities and track most common malicious code and patterns using Static Code Analysis and Vulnerabilities Analysis
What are some alternatives?
Node-Estree - Complete and compliant ESTree spec implementation in TypeScript
cli - JavaScript security CLI that allow you to deeply analyze the dependency tree of a given package or local Node.js project.
ci-action - The official GitHub action of the @nodesecure/ci package
meriyah - A 100% compliant, self-hosted javascript parser - https://meriyah.github.io/meriyah
js-x-ray - JavaScript & Node.js open-source SAST scanner. A static analyser for detecting most common malicious patterns 🔬.
scanner - ⚡️ A package API to run a static analysis of your module's dependencies. This is the CLI engine!
webappsec-subresource-integrity - WebAppSec Subresource Integrity
vulnera - Programmatically fetch security vulnerabilities with one or many strategies (NPM Audit, Sonatype, Snyk, Node.js DB).
rc - NodeSecure runtime configuration
security-wg - Node.js Ecosystem Security Working Group