[Tests] use npm audit instead of nsp

ljharb · Jan 20, 2019 · be8e5d2 · be8e5d2
1 parent 4c9100c
commit be8e5d2
Show file tree

Hide file tree

Showing 2 changed files with 5 additions and 3 deletions.
diff --git a/.npmrc b/.npmrc
@@ -1 +1,2 @@
 package-lock=false
+audit-level=high
diff --git a/package.json b/package.json
@@ -9,12 +9,14 @@
 		"pretest": "npm run --silent lint",
 		"test": "npm run --silent tests-only",
 		"tests-only": "node --harmony test/index.js",
-		"posttest": "npm run --silent security",
+		"posttest": "npm run audit",
 		"coverage": "covert test/*.js",
 		"coverage-quiet": "covert test/*.js --quiet",
 		"lint": "eslint .",
 		"eccheck": "editorconfig-tools check *.js **/*.js > /dev/null",
-		"security": "nsp check"
+		"preaudit": "npm install --package-lock --package-lock-only",
+		"audit": "npm audit",
+		"postaudit": "rm package-lock.json"
 	},
 	"repository": {
 		"type": "git",
@@ -35,7 +37,6 @@
 		"covert": "^1.1.0",
 		"editorconfig-tools": "^0.1.1",
 		"eslint": "^4.15.0",
-		"nsp": "^3.1.0",
 		"tape": "^4.8.0"
 	},
 	"testling": {