tldr/pages/common/pnpm-audit.md

38 lines
759 B
Markdown
Raw Normal View History

# pnpm audit
> Scan project dependencies.
> Check for known security issues with the installed packages.
> More information: <https://pnpm.io/cli/audit>.
- Identify vulnerabilities in the project:
`pnpm audit`
- Automatically fix vulnerabilities:
`pnpm audit fix`
- Generate a security report in JSON format:
`pnpm audit --json > {{path/to/audit-report.json}}`
- Audit only [D]ev dependencies:
`pnpm audit --dev`
- Audit only [P]roduction dependencies:
`pnpm audit --prod`
- Exclude optional dependencies from the audit:
`pnpm audit --no-optional`
- Ignore registry errors during the audit process:
`pnpm audit --ignore-registry-errors`
- Filter advisories by severity (low, moderate, high, critical):
`pnpm audit --audit-level {{severity}}`