1 | {
|
2 | "name": "is-website-vulnerable",
|
3 | "version": "1.1.0",
|
4 | "description": "finds publicly known security vulnerabilities in a website's frontend JavaScript libraries",
|
5 | "main": "index.js",
|
6 | "bin": {
|
7 | "is-website-vulnerable": "./bin/is-website-vulnerable.js"
|
8 | },
|
9 | "engines": {
|
10 | "node": ">=10.0.0"
|
11 | },
|
12 | "scripts": {
|
13 | "lint": "eslint . && npm run lint:lockfile",
|
14 | "lint:lockfile": "lockfile-lint --path yarn.lock --type yarn --validate-https --allowed-hosts npm yarn",
|
15 | "lint:fix": "eslint . --fix",
|
16 | "format": "prettier --config .prettierrc.js --write '**/*.js'",
|
17 | "test": "jest",
|
18 | "test:watch": "jest --watch",
|
19 | "coverage:view": "open-cli coverage/lcov-report/index.html",
|
20 | "semantic-release": "semantic-release"
|
21 | },
|
22 | "author": {
|
23 | "name": "Liran Tal",
|
24 | "email": "liran.tal@gmail.com",
|
25 | "url": "https://github.com/lirantal"
|
26 | },
|
27 | "license": "Apache-2.0",
|
28 | "keywords": [
|
29 | "security",
|
30 | "vulnerabilities",
|
31 | "website",
|
32 | "scan",
|
33 | "lighthouse",
|
34 | "audit"
|
35 | ],
|
36 | "homepage": "https://github.com/lirantal/is-website-vulnerable",
|
37 | "bugs": {
|
38 | "url": "https://github.com/lirantal/is-website-vulnerable/issues"
|
39 | },
|
40 | "repository": {
|
41 | "type": "git",
|
42 | "url": "https://github.com/lirantal/is-website-vulnerable.git"
|
43 | },
|
44 | "dependencies": {
|
45 | "chalk": "^2.4.2",
|
46 | "debug": "^4.1.1",
|
47 | "lighthouse": "^5.5.0"
|
48 | },
|
49 | "devDependencies": {
|
50 | "@commitlint/cli": "^7.2.1",
|
51 | "@commitlint/config-conventional": "^7.1.2",
|
52 | "@semantic-release/changelog": "^3.0.4",
|
53 | "@semantic-release/commit-analyzer": "^6.2.0",
|
54 | "@semantic-release/git": "^7.0.16",
|
55 | "@semantic-release/github": "^5.4.2",
|
56 | "@semantic-release/npm": "^5.1.13",
|
57 | "@semantic-release/release-notes-generator": "^7.2.1",
|
58 | "babel-eslint": "^10.0.1",
|
59 | "babel-plugin-syntax-async-functions": "^6.13.0",
|
60 | "babel-plugin-transform-regenerator": "^6.26.0",
|
61 | "babel-preset-env": "^1.6.1",
|
62 | "cz-conventional-changelog": "^1.2.0",
|
63 | "eslint": "^6.0.1",
|
64 | "eslint-config-standard": "^13.0.1",
|
65 | "eslint-plugin-import": "^2.18.0",
|
66 | "eslint-plugin-jest": "^22.7.2",
|
67 | "eslint-plugin-node": "^9.1.0",
|
68 | "eslint-plugin-promise": "^4.2.1",
|
69 | "eslint-plugin-security": "^1.4.0",
|
70 | "eslint-plugin-standard": "^4.0.0",
|
71 | "husky": "^3.0.0",
|
72 | "jest": "^24.8.0",
|
73 | "lint-staged": "^9.2.0",
|
74 | "lockfile-lint": "^2.0.1",
|
75 | "open-cli": "^5.0.0",
|
76 | "prettier": "^1.18.2",
|
77 | "semantic-release": "^15.13.19"
|
78 | },
|
79 | "jest": {
|
80 | "testEnvironment": "node",
|
81 | "verbose": true,
|
82 | "notify": true,
|
83 | "collectCoverage": true,
|
84 | "coverageThreshold": {
|
85 | "global": {
|
86 | "branches": 80,
|
87 | "functions": 80,
|
88 | "lines": 80,
|
89 | "statements": 80
|
90 | }
|
91 | },
|
92 | "testPathIgnorePatterns": [
|
93 | "/__tests__/.*/__fixtures__/.*"
|
94 | ],
|
95 | "collectCoverageFrom": [
|
96 | "index.js",
|
97 | "src/**/*.{js,ts}"
|
98 | ],
|
99 | "testMatch": [
|
100 | "**/*.test.js"
|
101 | ]
|
102 | },
|
103 | "husky": {
|
104 | "hooks": {
|
105 | "commit-msg": "commitlint --env HUSKY_GIT_PARAMS",
|
106 | "pre-commit": "lint-staged",
|
107 | "post-merge": "yarn install",
|
108 | "pre-push": "npm run lint && npm run test"
|
109 | }
|
110 | },
|
111 | "lint-staged": {
|
112 | "**/*.js": [
|
113 | "npm run format",
|
114 | "git add"
|
115 | ]
|
116 | },
|
117 | "commitlint": {
|
118 | "extends": [
|
119 | "@commitlint/config-conventional"
|
120 | ]
|
121 | },
|
122 | "standard": {
|
123 | "env": [
|
124 | "jest"
|
125 | ],
|
126 | "parser": "babel-eslint",
|
127 | "ignore": [
|
128 | "**/out/"
|
129 | ]
|
130 | },
|
131 | "eslintIgnore": [
|
132 | "coverage/**"
|
133 | ],
|
134 | "eslintConfig": {
|
135 | "env": {
|
136 | "node": true,
|
137 | "es6": true,
|
138 | "jest": true
|
139 | },
|
140 | "plugins": [
|
141 | "import",
|
142 | "standard",
|
143 | "node",
|
144 | "security",
|
145 | "jest"
|
146 | ],
|
147 | "extends": [
|
148 | "standard",
|
149 | "plugin:node/recommended"
|
150 | ],
|
151 | "rules": {
|
152 | "no-process-exit": "warn",
|
153 | "jest/no-disabled-tests": "error",
|
154 | "jest/no-focused-tests": "error",
|
155 | "jest/no-identical-title": "error",
|
156 | "node/no-unsupported-features": "off",
|
157 | "node/no-unpublished-require": "off",
|
158 | "security/detect-non-literal-fs-filename": "error",
|
159 | "security/detect-unsafe-regex": "error",
|
160 | "security/detect-buffer-noassert": "error",
|
161 | "security/detect-child-process": "error",
|
162 | "security/detect-disable-mustache-escape": "error",
|
163 | "security/detect-eval-with-expression": "error",
|
164 | "security/detect-no-csrf-before-method-override": "error",
|
165 | "security/detect-non-literal-regexp": "error",
|
166 | "security/detect-object-injection": "warn",
|
167 | "security/detect-possible-timing-attacks": "error",
|
168 | "security/detect-pseudoRandomBytes": "error",
|
169 | "space-before-function-paren": "off",
|
170 | "object-curly-spacing": "off"
|
171 | },
|
172 | "parserOptions": {
|
173 | "ecmaVersion": 8,
|
174 | "ecmaFeatures": {
|
175 | "impliedStrict": true
|
176 | }
|
177 | }
|
178 | },
|
179 | "release": {
|
180 | "branch": "master",
|
181 | "analyzeCommits": {
|
182 | "preset": "angular",
|
183 | "releaseRules": [
|
184 | {
|
185 | "type": "docs",
|
186 | "release": "patch"
|
187 | },
|
188 | {
|
189 | "type": "refactor",
|
190 | "release": "patch"
|
191 | },
|
192 | {
|
193 | "type": "style",
|
194 | "release": "patch"
|
195 | }
|
196 | ]
|
197 | }
|
198 | },
|
199 | "plugins": [
|
200 | "@semantic-release/commit-analyzer",
|
201 | "@semantic-release/release-notes-generator",
|
202 | [
|
203 | "@semantic-release/changelog",
|
204 | {
|
205 | "changelogFile": "CHANGELOG.md"
|
206 | }
|
207 | ],
|
208 | "@semantic-release/npm",
|
209 | [
|
210 | "@semantic-release/git",
|
211 | {
|
212 | "assets": [
|
213 | "CHANGELOG.md"
|
214 | ]
|
215 | }
|
216 | ],
|
217 | "@semantic-release/github"
|
218 | ]
|
219 | }
|