0
Fork 0
mirror of https://github.com/verdaccio/verdaccio.git synced 2024-12-16 21:56:25 -05:00
verdaccio/packages/plugins/audit
Juan Picado daceb6d87e
chore: restore engines legacy support (#4072)
* chore: restore minimatch and legacy support

to be used on 5.x versions

* Update package.json

* Create old-turkeys-heal.md
2023-10-14 22:43:03 +02:00
..
src refactor: html render middleware improvements (#3603) 2023-02-12 20:26:18 +01:00
tests refactor: html render middleware improvements (#3603) 2023-02-12 20:26:18 +01:00
.babelrc
CHANGELOG.md chore: update versions (next) (#4033) 2023-09-24 10:34:31 +02:00
jest.config.js feat!: replace deprecated request dependency by got (#3100) 2022-07-29 20:51:45 +02:00
LICENSE
package.json chore: restore engines legacy support (#4072) 2023-10-14 22:43:03 +02:00
README.md
tsconfig.build.json
tsconfig.json refactor logger module (#3592) 2023-02-05 21:00:32 +01:00

verdaccio-audit

🛡🔬 npmjs audit support for verdaccio

verdaccio (latest) Known Vulnerabilities backers discord MIT node

Requirements

  • verdaccio@3.x or higher
 npm install --global verdaccio-audit

Usage

To enable it you need to add this to your configuration file.

middlewares:
  audit:
    enabled: true
    strict_ssl: true # optional, defaults to true

Strict SSL

In some scenarios it may be necessary to disable SSL certificate validation. Setting strict_ssl to false will disable these checks, but will make all connections passing through this plugin inherently insecure.

Disclaimer

This plugin is experimental and unstable. Please report any issue you found.

License

MIT (http://www.opensource.org/licenses/mit-license.php)