bitHound Blog

Checking your npm dependencies for security vulnerabilities

Keeping on top of your JavaScript project's npm dependencies can be a chore. bitHound already helps you determine which are out-of-date, but now we are going one step further and highlighting dependencies that have known security vulnerabilities.

bitHound is both a supporter and advocate of the Node Security Project which audits npm modules. bitHound scans your npm dependencies against a list of known vulnerabilities and informs you of any security vulnerabilities you may be susceptible to. We'll link to details about the vulnerability which includes recommended actions.

Scan your npm dependencies for known security vulnerabilities

bitHound identifies risks and priorities in your Node.js projects.