How do you test your projects if there are any infected/affected dependencies us... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		thepill 33 days ago \| parent \| context \| favorite \| on: Shai-Hulud Returns: Over 300 NPM Packages Infected How do you test your projects if there are any infected/affected dependencies used? As i understand it could also be a dependency of a dependency ... that could be affected?

efortis 33 days ago [–]

   npm audit

and

   npm audit --fix

Or if you want to know the version of a package you have installed:

   npm ls some-pkg

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact