Fix Lockfile Integrity is a tool that reverts all sha1 integrity back to sha512 in lock files, supporting both package-lock.json and npm-shrinkwrap.json, working with lockfile versions 1 & 2, and can be configured to work on multiple paths for monorepo support. It only fixes packages from the npm registry by default, but this can be changed via a configuration file. The tool can be installed globally with 'npm install -g fix-lockfile-integrity' or run with npx, and usage involves checking a local folder for a lockfile and fixing any sha1 in it.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A comprehensive server cryptographic protocol analyzer with API and CLI interface.
A visualization tool for uploading and visualizing data as graphs on-the-fly, based on AfterGlow and running on Django.
A collection of writeups of CTF challenges I solved, including explanations of the challenges and how I solved them.
An open-source artifact metadata API for managing metadata about software resources and governing the software supply chain.
An easy-to-use and lightweight API wrapper for Censys APIs with support for Python 3.8+.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.