Infrastructure/verdaccio
0
Fork 0
mirror of https://github.com/verdaccio/verdaccio.git synced 2025-01-27 22:59:51 -05:00
Code Issues Activity
verdaccio/packages/plugins/audit
History
Justin Johansson 15d5e969c4
Update & make dependency versions consistent in packages/* (#2393) 
* docs: improve pnpm development setup info in CONTRIBUTING.md

* build: make dependency versions consistent in packages/*

Updated to latest minor/patch versions; left major version unchanged for now

Did not change react dependencies in ui-theme package

Added .project file for Eclipse IDE users

* revert: rollback @changesets dep versions & maintain kleur v3.0.3
2021-08-30 08:19:08 +02:00
..
src feat: standalone server (#2046) 2021-04-09 17:54:34 +02:00
tests refactor: relocate verdaccio-audit plugin (#1976) 2021-04-09 17:54:22 +02:00
.babelrc refactor: relocate verdaccio-audit plugin (#1976) 2021-04-09 17:54:22 +02:00
CHANGELOG.md chore: update versions (alpha) (#2057) 2021-04-09 17:54:35 +02:00
jest.config.js refactor: relocate verdaccio-audit plugin (#1976) 2021-04-09 17:54:22 +02:00
LICENSE refactor: relocate verdaccio-audit plugin (#1976) 2021-04-09 17:54:22 +02:00
package.json Update & make dependency versions consistent in packages/* (#2393) 2021-08-30 08:19:08 +02:00
README.md refactor: relocate verdaccio-audit plugin (#1976) 2021-04-09 17:54:22 +02:00
tsconfig.build.json refactor: relocate verdaccio-audit plugin (#1976) 2021-04-09 17:54:22 +02:00
tsconfig.json chore: add update-ts-references (#2168) 2021-04-09 17:54:44 +02:00

README.md

verdaccio-audit

🛡🔬 npmjs audit support for verdaccio

verdaccio (latest) Known Vulnerabilities backers discord MIT node

Requirements

  • verdaccio@3.x or higher
 npm install --global verdaccio-audit

Usage

To enable it you need to add this to your configuration file.

middlewares:
  audit:
    enabled: true
    strict_ssl: true # optional, defaults to true

Strict SSL

In some scenarios it may be necessary to disable SSL certificate validation. Setting strict_ssl to false will disable these checks, but will make all connections passing through this plugin inherently insecure.

Disclaimer

This plugin is experimental and unstable. Please report any issue you found.

License

MIT (http://www.opensource.org/licenses/mit-license.php)