Audit NPM, Yarn, and PNPM dependencies in continuous integration environments, preventing integration if vulnerabilities are found at or above a configurable threshold while ignoring allowlisted advisories
Why do you think that https://github.com/0x80/isolate-package is a good alternative to audit-ci