Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Install nodeJSScan static tool for security scan #55

Closed
wants to merge 1 commit into from
Closed

Install nodeJSScan static tool for security scan #55

wants to merge 1 commit into from

Conversation

tatougueye
Copy link

@tatougueye tatougueye commented Oct 26, 2024
edited
Loading

Integrated nodeJSScan a static security code scanner for Node.js applications. This tool detects and gives you a rundown of security issues you might have with a specific file and if not issues are detected it will indicate that. Used the CLI approach by first running pip install njsscan, after running njsscan. To see a security analysis of a js file, you have to run on the terminal njsscan <filepath>.
Screen Shot 2024-10-26 at 5 10 16 AM
Screen Shot 2024-10-26 at 5 10 26 AM

@coveralls
Copy link

Pull Request Test Coverage Report for Build 11527877051

Details

  • 0 of 0 changed or added relevant lines in 0 files are covered.
  • 1 unchanged line in 1 file lost coverage.
  • Overall coverage decreased (-0.02%) to 82.675%
Files with Coverage Reduction New Missed Lines %
src/meta/errors.js 1 76.74%
Totals Coverage Status
Change from base Build 11475022613: -0.02%
Covered Lines: 22362
Relevant Lines: 25627
💛 - Coveralls

@akobaidan akobaidan added this to the P3A milestone Oct 26, 2024
@akobaidan akobaidan added the enhancement New feature or request label Oct 26, 2024
mohamed-elzeni
mohamed-elzeni requested changes Oct 26, 2024
View reviewed changes
Copy link
Member

@mohamed-elzeni mohamed-elzeni left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I was able to successfully install the tool and produce the same output by following the instructions you gave, but could you please explain why this modifies the code for anonymous posting?

@aattiyah aattiyah changed the title added nodeJSScan static tool for security scan Installed nodeJSScan static tool for security scan Oct 27, 2024
lhitmi
lhitmi reviewed Oct 27, 2024
View reviewed changes
Copy link

@lhitmi lhitmi left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The tool installation looks fine on my end can you please explain more in the pull request regarding the changes. Thank you!

@mohamed-elzeni mohamed-elzeni changed the title Installed nodeJSScan static tool for security scan Install nodeJSScan static tool for security scan Oct 27, 2024
@mohamed-elzeni
Copy link
Member

This will be addressed in #57 so it will be closed.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@lhitmi lhitmi lhitmi left review comments

@mohamed-elzeni mohamed-elzeni mohamed-elzeni requested changes

Assignees

@tatougueye tatougueye

Labels
enhancement New feature or request
Projects
None yet
Milestone
P3A
Development

Successfully merging this pull request may close these issues.
5 participants
@tatougueye @coveralls @mohamed-elzeni @lhitmi @akobaidan