Huge News!Announcing our $40M Series B led by Abstract Ventures.Learn More
Socket
Sign inDemoInstall
Socket
Sign inDemoInstall

@sum.cumo/node-modules-check

Package Overview
Dependencies
Maintainers
7
Versions
7
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

@sum.cumo/node-modules-check

Check for outdated Node modules

  • 2.1.1
  • Source
  • npm
  • Socket score
Version published
Weekly downloads
5
decreased by-37.5%
Maintainers
7
Weekly downloads
 
Created
Source

Node Modules Check

Description

This script looks up your package.json and tells you if there are any outdated packages. In case of outdated packages the script returns an exit code 1, otherwise 0. It uses npm outdated --json under the hood.

Features

  • ignore specific packages to be marked as outdated
  • sort packages by version difference (major → minor → patch)
  • indicate version difference by color
  • display type of dependency
  • show the homepage setting from the package.json of the outdated package

Installation

npm install --save-dev @sum.cumo/node-modules-check

Usage

check-node-modules

Configuration

You can set up packages that should be ignored in a configuration file.

Example:

{
  "ignore": [
    "eslint"
  ],
  "ignoreRegex": [
    "([a-z])." //regex can be used as well
  ],
  "ignoreDev": true, // ignore dev dependencies
  "ignoreSemver": [ // ignore semantic version
    "prerelease"
  ]
}

The configuration file can be specified through

check-node-modules --config path/to/some/config/file

or by placing a file named .check-node-modules.config.json in your projects folder.

Purpose example: GitLab CI

At sum.cumo we run this check in a scheduled pipeline in GitLab CI in order to check for outdated node modules regularly and automatically.

Dev workflow

  1. npm install
  2. ./bin/check.js

This will run the package on itself.

SVG creation
Dependencies
Commands
  1. Create the .cast file: 
    asciinema rec node-modules-check.cast
  2. Create the .svg file: 
    cat node-modules-check.cast | svg-term-cli --out node-modules-check.svg --profile=Seti --height=30 --width=100 --term iterm2 --window

License

Copyright 2019 sum.cumo GmbH

Licensed under the Apache License, Version 2.0 (the “License”); you may not use this file except in compliance with the License. You may obtain a copy of the License at

http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an “AS IS” BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.

Learn more about sum.cumo or work on open source projects, too!

Keywords

FAQs

Package last updated on 05 Jun 2019

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts

Research

Security News

Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts

Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.

By Kirill Boychenko  -  Dec 20, 2024
SocketSocket SOC 2 Logo

Product

  • Package Alerts
  • Integrations
  • Docs
  • Pricing
  • FAQ
  • Roadmap
  • Changelog

About

Packages

npm

Go

Maven

PyPI

Rubygems

Stay in touch

Get open source security insights delivered straight into your inbox.

  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc