npm
Sign UpSign In

@mcandre/periscope

0.0.5 • Public • Published

periscope: NPM/Yarn dependency scope linter

EXAMPLES

$ cd examples

$ cd hello-npm

$ periscope .
warning: unscoped publication name "hello-npm" vulnerable to spoofing: package.json
warning: unscoped dependency name "express" vulnerable to spoofing: package.json
warning: unscoped dependency name "redis" vulnerable to spoofing: package.json

See periscope -h for more options.

ABOUT

NPM provides scoped package names using an at sign (@) prefix. Scoped names are safer than classical names. For example, anyone can publish packages with names similar to redis, but only authorized members of the scope are allowed to publish packages with the @redis/ namespace.

periscope automates scannign large, complex projects to identify first party and third party code that uses unscoped package names.

NPM

https://www.npmjs.com/package/@mcandre/periscope

LICENSE

BSD-2-Clause

REQUIREMENTS

Optional

CONTRIBUTING

For more information on developing periscope itself, see DEVELOPMENT.md.

SEE ALSO

  • booty, a task runner convention for ECMAScript/JavaScript/Node.js/altJS projects
  • linters, a wiki of common programming language linters and SAST tools
  • stank, a collection of shell script linter utilities
  • unmake, a linter for makefiles

yellow submarine

Readme

Keywords

none

Package Sidebar

Install

npm i @mcandre/periscope

Repository

github.com/mcandre/periscope

Homepage

github.com/mcandre/periscope#readme

Weekly Downloads

12

Version

0.0.5

License

none

Unpacked Size

5.21 MB

Total Files

115

Last publish

Collaborators

  • mcandre
Try on RunKit
Report malware