Node Security Project (nsp)

Language / Framework: Node/JavaScript
Checks: 56
Categories: Security
NSP Version: 3.1.0

Created by the folks at ^Lift Security, the Node Security Project (nsp) audits your Node.js modules using a seasoned auditing team and alerts you to vulnerabilities when advisories are created or updated.

Enable the Plugin

To enable Node Security Project analysis, add the following to your .codeclimate.yml configuration file:

plugins:
  nodesecurity:
    enabled: true

More information about the CLI is available in the README here: https://github.com/codeclimate/codeclimate

Configure the Plugin

There is no configuration available for this engine.

Understand the Plugin

Consult the official NSP documentation for information about this engine.

Note You must have shrinkwrap.json file available in the root level of your repository for the nodesecurity engine to work with Code Climate.