Improve security vulnerabilities interaction

(Croraf) #1

I want to check vulnerabilities per package on npm webpages.

There is this list: https://www.npmjs.com/advisories But without search this list is useless. Can I somehow search it. If not, search option should be added.

Also, for example at this moment, at the top I see preact has high severity vulnerability. But if I open https://www.npmjs.com/package/preact there is no note here that the latest (or some version) of library has a security vulnerability. In the package page there should be a list of security vulnerabilities, related to this package.

(Szb512) #2

That is a great suggestion. :smiley: I use npm myself and I get a whole lot of security vulnerabilities when the website doesn’t mention it.:neutral_face::no_mouth:

1 Like