Check for vulnerabilities using audit

This is a reminder post as I occasionally forget this command in yarn and npm.

Third party packages within our applications occasionally need updating due to security issues/vulnerabilities. Github kindly supplies information via dependabot, but if you’re not using github or simply want to check the latest state of the packages used in your code, you can use

yarn audit

See yarn audit for more information.

For NPM it’s the same CLI option, i.e.

npm audit

See npm audit for more information.

My Memory

Outsourcing my memory and thoughts (and other ramblings) to the web

Check for vulnerabilities using audit