You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
{{ message }}
This repository has been archived by the owner on Apr 4, 2019. It is now read-only.
Dependencies containing or depending on crypto have special treatment. We should be able to have a primitive detection in blackbelt to distinguish those. There could be some keyword matching against the name of the package, but I think the most efficient MVP implementation would be to just maintain the list of the most common ones and when they appear in the dependency tree, blackbelt would flag them:
Dependencies containing or depending on crypto have special treatment. We should be able to have a primitive detection in blackbelt to distinguish those. There could be some keyword matching against the name of the package, but I think the most efficient MVP implementation would be to just maintain the list of the most common ones and when they appear in the dependency tree, blackbelt would flag them:
Node.js’ very own builtin crypto module https://nodejs.org/api/crypto.html is fine.
The text was updated successfully, but these errors were encountered: