Skip to content

Releases: nodejs/is-my-node-vulnerable

v1.6.1

Choose a tag to compare

@RafaelGSS RafaelGSS released this 04 Nov 21:16

What's Changed

New Contributors

Full Changelog: v1.6.0...v1.6.1

v1.6.0

Choose a tag to compare

@RafaelGSS RafaelGSS released this 01 Nov 16:16

What's Changed

  • feat: add support to old versions of Node.js by @RafaelGSS in #23

Full Changelog: v1.5.0...v1.6.0

v1.5.0

Choose a tag to compare

@RafaelGSS RafaelGSS released this 17 Sep 03:01

What's Changed

Full Changelog: v1.4.1...v1.5.0

v1.4.1

Choose a tag to compare

@RafaelGSS RafaelGSS released this 22 May 13:34

What's Changed

Full Changelog: v1.4.0...v1.4.1

v1.4.0

Choose a tag to compare

@RafaelGSS RafaelGSS released this 21 May 19:56

What's Changed

New Contributors

Full Changelog: v1.3.0...v1.4.0

v1.3.0

Choose a tag to compare

@RafaelGSS RafaelGSS released this 21 Mar 17:49

What's Changed

  • feat: added platform validation by @UlisesGascon in #12
    npx is-my-node-vulnerable now checks if the public CVE affects your operating system

Full Changelog: v1.2.0...v1.3.0

v1.2.0

Choose a tag to compare

@RafaelGSS RafaelGSS released this 21 Feb 12:56

What's Changed

Github Action capabilities 🎉

Example:

  • Passing for Node.js 18.14.1, Node.js Vulnerabilities (PASS)
  • Failing for Node.js 8.0.0, Node.js Vulnerabilities (FAIL)

Using it

name: "Node.js Vulnerabilities"
on: 
  schedule:
    - cron: "0 0 * * *"
jobs:
  is-my-node-vulnerable:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v3
      - name: Check Node.js
        uses: RafaelGSS/is-my-node-vulnerable@v1.2.0
        with:
          node-version: "18.14.1"

New Contributors

Full Changelog: v1.1.0...v1.2.0

v1.1.0

Choose a tag to compare

@RafaelGSS RafaelGSS released this 30 Jan 22:18

What's Changed

New Contributors

Full Changelog: v1.0.0...v1.1.0

v1.0.0

Choose a tag to compare

@RafaelGSS RafaelGSS released this 26 Jan 01:09

Worried about the security of your Node.js installation? This package is here to help!

It checks for known vulnerabilities by comparing your installed version to the Node.js Security Database and alerts you if any are found. Try it with:

$ npx is-my-node-vulnerable

Including it in your CI might be a good fit :)

v1.0.0-2

v1.0.0-2 Pre-release
Pre-release

Choose a tag to compare

@RafaelGSS RafaelGSS released this 25 Jan 03:28

Full Changelog: v1.0.0-0...v1.0.0-2