npq Logo

npq

0
Free
Visit Website

npq is a tool that safely installs packages with npm/yarn by auditing them as part of your install process. It performs sanity checks to ensure the package is safe to install, including: * Consulting the Snyk.io database of publicly disclosed vulnerabilities * Checking package age on npm * Verifying package download count as a popularity metric * Ensuring the package has a README file * Verifying the package has a LICENSE file * Checking for pre/post install scripts Once installed, npq can be used to safely install packages, such as `npq install express`.

FEATURES

ALTERNATIVES

A tool for secure content publishing and verification using offline signing and trusted collections.

Application monitoring and security platform that provides runtime visibility, threat detection, and automated response capabilities for application-layer security

A comprehensive web application security testing solution that offers built-in vulnerability assessment and management, as well as integration options with popular software development tools.

XSS Polyglot Challenge - XSS payload running in multiple contexts for testing XSS.

A simple Swagger-ui scanner that detects old versions vulnerable to various XSS attacks

A brute-force protection middleware for express routes that rate-limits incoming requests.

Hackazon is a free, vulnerable test site with an online storefront to train and test IT security professionals on various vulnerabilities like SQL Injection and cross-site scripting.

Tenable One Exposure Management Platform is a comprehensive platform for vulnerability management and exposure management.

PINNED