Uploaded image for project: 'Dev - Nexus Repo'
  1. Dev - Nexus Repo
  2. NEXUS-23658

npm Audit support in NXRM without an IQ server

    XMLWordPrintable

    Details

    • Type: Improvement
    • Status: New
    • Priority: Major
    • Resolution: Unresolved
    • Affects Version/s: 3.23.0
    • Fix Version/s: None
    • Component/s: NPM, npm-audit
    • Labels:
      None

      Description

      This ticket is to track demand for Npm Audit support for users that don't have an IQ server.

      In NXRM 3.23.0 we released support for Npm Audit which requires an IQ server to surface Sonatype's high quality data and policy enforcement.

      See https://issues.sonatype.org/browse/NEXUS-16954 for more info.

      Reference

      https://docs.npmjs.com/getting-started/running-a-security-audit
      https://docs.npmjs.com/cli/audit

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              Unassigned
              Reporter:
              jstephens Joseph Stephens
              Last Updated By:
              Joseph Stephens
              Votes:
              15 Vote for this issue
              Watchers:
              18 Start watching this issue

                Dates

                Created:
                Updated:
                Date of First Response:

                  tigCommentSecurity.panel-title