Are you sure the open-source React package (from npm) is malicious/risky?

Prodramp

pop culture firewall gems javascript npm opensource packj python react ruby rubygems

description

Learn to identify if your JavaScript - React (NPM) is malicious or risky to use in your own JavaScript application.

Packj - The vetting tool 🚀 behind our "dependency firewall" to block malicious/risky open-source packages in your software supply chain

https://github.com/ossillate-inc/packj

Various Command Sample:

$ python main.py audit -t -p npm:react
$ python main.py audit -t -p npm:react-scripts
$ python main.py audit -t -f npm:package.json

== Video Timeline == (00:00) Quick Intro (00:42) Quick tool overview (03:33) Why the need? (05:05) Packj installation (06:20) How to audit Package? (12:15) How to audit Package.json? (17:06) End Credits

Please visit: https://prodramp.com | @prodramp https://www.linkedin.com/company/prodramp

Content Creator: Avkash Chauhan (@avkashchauhan) https://www.linkedin.com/in/avkashchauhan

Tags: #python #ruby #react #developertools ... https://www.youtube.com/watch?v=vMAOGRt-rik

created

2023-01-13

staked

0.0 LBC

license

Copyrighted (contact publisher)

File size

198346833 Bytes