sandworm-jest
sandworm-audit
Our great sponsors
sandworm-jest | sandworm-audit | |
---|---|---|
6 | 6 | |
17 | 462 | |
- | -0.6% | |
10.0 | 8.4 | |
over 1 year ago | 6 months ago | |
JavaScript | JavaScript | |
MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
sandworm-jest
- Security Snapshot Testing Inside Your Jest Test Suite
- GitHub - sandworm-hq/sandworm-jest: Security Snapshot Testing Inside Your Jest Test Suite
-
Easy auditing & sandboxing for your JavaScript dependencies. Fine grained permissions system for npm packages.
Yes, you can use it for security by locking down which dependencies can execute which methods in your app. But you can also use it for auditing and documenting your app's supply chain security profile, then snapshot testing against that using the Jest and Mocha plugins.
sandworm-audit
-
Anyone else’s project use so many deprecated packages
use https://github.com/sandworm-hq/sandworm-audit. if u run it for your app the deprecated libraries will show up in the list of issues found (contributor)
-
Running Eleventy Serverless On AWS Lambda@Edge
And as you add more dependencies, it’s time to also build security and compliance into your app early. Sandworm Audit is the open-source npm audit that doesn’t suck: it checks for multiple types of issues, like vulnerabilities or license compliance, it outputs SVG charts and CSVs, and you can also run it in your CI to enforce security rules. Check the docs and npx @sandworm/audit in your JavaScript app’s root to try it out 🪱.
- Beautiful Security & License Compliance Reports For Your App's Dependencies
-
Sinkchart - open source visualisation tool for your JS dependencies
This is why we've created Sinkchart - beautiful Visualizations For Your App's Dependencies
-
Beautiful Visualizations For Your App's Dependencies
made with https://github.com/sandworm-hq/sinkchart
What are some alternatives?
expect-mocha-image-snapshot - A wrapper around jest-image-snapshot that makes it compatible to Mocha.
sandworm-guard-js - Easy auditing & sandboxing for your JavaScript dependencies 🪱
sandworm-mocha - Security Snapshot Testing Inside Your Mocha Test Suite 🪱
serverless-graphql - Serverless GraphQL Examples for AWS AppSync and Apollo
trivy - Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
11ty-lambda-edge-demo - A simple tutorial for running Eleventy Serverless on AWS Lambda@Edge
Damn-Vulnerable-GraphQL-Application - Damn Vulnerable GraphQL Application is an intentionally vulnerable implementation of Facebook's GraphQL technology, to learn and practice GraphQL Security.
Gatsby - The best React-based framework with performance, scalability and security built in.
cli - Snyk CLI scans and monitors your projects for security vulnerabilities.
Liquid - Liquid markup language. Safe, customer facing template language for flexible web apps.
eleventy 🕚⚡️ - A simpler site generator. Transforms a directory of templates (of varying types) into HTML.
Next.js - The React Framework