NSP Version: 3.1.0
Created by the folks at ^Lift Security, the Node Security Project (nsp) audits your Node.js modules using a seasoned auditing team and alerts you to vulnerabilities when advisories are created or updated.
To enable Node Security Project analysis, add the following to your .codeclimate.yml configuration file:
plugins: nodesecurity: enabled: true
More information about the CLI is available in the README here: https://github.com/codeclimate/codeclimate
There is no configuration available for this engine.
Consult the official NSP documentation for information about this engine.
Note You must have
shrinkwrap.json file available in the root level of your repository for the
nodesecurity engine to work with Code Climate.