npm-audit-visualizer

A web-based tool to visualize audit reports generated by npm audit.

Disclaimer: This tool is still in its alpha phase.

Previews

Get the tool

npm install -g npm-audit-visualizer

To verify that the installation was successful, please try the --help flag:

npm-audit-visualizer --help

Usage

Navigate to a project that has package vulnerabilities and generate an audit report:

npm audit --json > audit.json

Then, run the tool on the generated audit report:

npm-audit-visualizer -f audit.json

By default, this should automatically open a new page in your web browser at the URL: http://localhost:1248. If it does not, please try navigating to that URL manually.

About

What

npm-audit-visualizer is a web-based tool to visualize audit reports generated by npm audit.

Why

With v7 of npm, the npm audit command was updated & it no longer displays results in a tabular format.

While the new format is still useful, there were some visual elements to the old tabular format that made it easier to trace vulnerability paths & dependencies.

As a result, the goal of this tool is to re-provide a visual interface for audit reports, which can hopefully make it quicker and easier to identify and resolve vulnerabilities within npm-managed projects.

Development

This section will describe how to get the project setup for local development.

Dependencies

To work with this project, you will need to have the following dependencies installed:

Node.js (v20+)
- Official
- fnm
- nvm

Get the source

This project is hosted at: https://github.com/nrednav/npm-audit-visualizer

HTTPS:

git clone https://github.com/nrednav/npm-audit-visualizer.git

SSH:

git clone git@github.com:nrednav/npm-audit-visualizer.git

Install

To install the project's dependencies:

cd npm-audit-visualizer/
npm install

Build

npm run build

This will also build the web-app.

Test

To run all the project's tests:

npm run test

Alternatively, you can run just the web-app tests with:

npm run test:web-app

Run

To run the tool:

npm run dev -- -f <path/to/audit.json>

You can also run the tool in debug mode using the -d flag:

npm run dev -- -d -f <path/to/audit.json>

This will output additional logs for each stage the tool completes.

Issues & Requests

To request a new feature or report a bug, please open an issue by clicking here.

Resources

npm-audit v10

Name		Name	Last commit message	Last commit date
Latest commit History 95 Commits
.husky		.husky
assets		assets
scripts		scripts
src		src
.editorconfig		.editorconfig
.gitignore		.gitignore
.node-version		.node-version
.nvmrc		.nvmrc
CHANGELOG.md		CHANGELOG.md
LICENSE		LICENSE
README.md		README.md
biome.json		biome.json
package-lock.json		package-lock.json
package.json		package.json
tsconfig.json		tsconfig.json
tsup.config.ts		tsup.config.ts
vitest.config.ts		vitest.config.ts

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Repository files navigation

npm-audit-visualizer

Previews

Get the tool

Usage

About

What

Why

Development

Dependencies

Get the source

Install

Build

Test

Run

Issues & Requests

Resources

About

Uh oh!

Releases 4

Packages

Uh oh!

Languages

License

nrednav/npm-audit-visualizer

Folders and files

Latest commit

History

Repository files navigation

npm-audit-visualizer

Previews

Get the tool

Usage

About

What

Why

Development

Dependencies

Get the source

Install

Build

Test

Run

Issues & Requests

Resources

About

Topics

Resources

License

Uh oh!

Stars

Watchers

Forks

Releases 4

Packages 0

Uh oh!

Languages

Packages