L

Lockfile Lint

Lint an npm or Yarn lockfile to analyze and detect security issues via predefined security policies.

Pricing: Free
Visit website

What is Lockfile Lint?

Lockfiles are used as trusted whitelist of resources manifest to fetch packages from. However, keeping track of the changes introduced to lockfiles is not an easy task as they are designed to be consumed by machines 🤖.

What happens when someone creates a Pull Request and sneaks a malicious resource package that replaces a real library? 😱

Exactly! Lint your lockfiles to ensure they adhere to pre-defined security policies and mitigate this vector of attack.

More tools in Security Testing

N

Nogotofail

An on-path blackbox network traffic security testing tool

Security Testing
Free
Wfuzz logo

Wfuzz

Automate web applications security assessments

Security Testing
Free
beef logo

beef

It is a penetration testing tool that focuses on the web browser.

Security Testing
Free