Dependency Audit

Scan dependencies for vulnerabilities, check for outdated packages, and verify license compliance.

Vulnerability Scanning

Node.js (npm/pnpm)

# npm audit with summary
npm audit

# JSON output for processing
npm audit --json | jq '{total: .metadata.vulnerabilities, critical: .metadata.vulnerabilities.critical, high: .metadata.vulnerabilities.high}'

# Auto-fix where possible
npm audit fix

# pnpm