Our great sponsors
-
bearer
Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.
-
packj
Packj stops :zap: Solarwinds-, ESLint-, and PyTorch-like attacks by flagging malicious/vulnerable open-source dependencies ("weak links") in your software supply-chain
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
Hi HN,
I’m Guillaume, the cofounder of Bearer, an Open Source SAST solution.
After launching a few weeks ago here on Hacker News with support for Ruby and JavaScript stacks, I’m happy to report we’ve just released a new version (v1.2) with TypeScript support!
In terms of code coverage, we use the same rules already implemented for vanilla JavaScript, but as usual, you can build your own.
The rules list is here: https://docs.bearer.com/reference/rules/
It’s a first version for TS, but we believe that thanks to the pre-existing JavaScript support it should already provide good insights.
If you have some TypeScript code, we would love for you to try it out and let us know in the comment below or on our Discord your experience and how we can improve the findings.
You can access the repo here: https://github.com/Bearer/bearer
Thank you again!
Cool project. Would love to integrate this in Packj [1] as one of the open-source SAST scanners. Will DM you.
1. https://github.com/ossillate-inc/packj flags malicious/risky open-source dependencies.