The npm community forum has been discontinued.
To discuss usage of npm, visit the GitHub Support Community.
What Vulnerability DB does npm audit use?
It might be dumb question. I have already googled before I submit this question but I cannot find.
I am considering the way to manage dependencies and creating comparison table so I would like know which Vulnerability DB npm audit is based on.
Thanks in advance.
This one: https://www.npmjs.com/advisories (previously called the Node Security Project)
I appreciate your answer.