GitLab SAST for NodeJS

This project uses eslint-plugin-security to scan and report security issues.

Usage: scan [options] <path ...>

Options:

  -v, --version         output the version number
  -o, --out <filename>  output filename, defaults to gl-sast-report.json
  -h, --help            output usage information

How to use

NPX

npx gitlab-sast-nodejs path1 path2

NPM

npm i -g gitlab-sast-nodejs

Docker

Using Docker you can simply mount two volumes in the container, e.g.:

docker run --rm -it -v $(PWD)/src:/src/code -v $(PWD):/output sast

This will scan a subfolder src/ and write the result to the root of your project

Name		Name	Last commit message	Last commit date
Latest commit History 1 Commits
lib		lib
.dockerignore		.dockerignore
.editorconfig		.editorconfig
.eslintrc.yml		.eslintrc.yml
.gitignore		.gitignore
Dockerfile		Dockerfile
README.md		README.md
package-lock.json		package-lock.json
package.json		package.json
scan.js		scan.js

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

lib

lib

.dockerignore

.dockerignore

.editorconfig

.editorconfig

.eslintrc.yml

.eslintrc.yml

.gitignore

.gitignore

Dockerfile

Dockerfile

README.md

README.md

package-lock.json

package-lock.json

package.json

package.json

scan.js

scan.js

Repository files navigation

GitLab SAST for NodeJS

How to use

NPX

NPM

Docker

About

Releases

Packages

Languages

mgibeau/gitlab-sast-nodejs

Folders and files

Latest commit

History

Repository files navigation

GitLab SAST for NodeJS

How to use

NPX

NPM

Docker

About

Resources

Stars

Watchers

Forks

Languages