bastisk/node-vuln-checker
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

minor code cleanup

Browse Source
This commit is contained in:
Sebastian Kiepsch
2025-09-10 16:04:12 +02:00
parent 9d0f093d7d
commit 49643de838
1 changed files with 1 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
index.js
View File

@@ -29,13 +29,12 @@ const packageLockJson = JSON.parse(rawDataPackageLock);
let tableOutput = []; let tableOutput = [];
let htmlOutput = '<html><head><link rel="stylesheet" type="text/css" href="style.css"></head><body>'; let htmlOutput = '<html><head><link rel="stylesheet" type="text/css" href="style.css"></head><body>';
// Check direct package dep
vulnJson.packages.forEach(vulnPackage => { vulnJson.packages.forEach(vulnPackage => {
console.log("Package: " + vulnPackage.name + ' (' + vulnPackage.version + ")"); console.log("Package: " + vulnPackage.name + ' (' + vulnPackage.version + ")");
for (var packageName in packageLockJson.packages) { for (var packageName in packageLockJson.packages) {
// Check if direct package is vuln
if (packageName.includes(vulnPackage.name)) { if (packageName.includes(vulnPackage.name)) {
var isVuln = packageLockJson.packages[packageName].version == vulnPackage.version ? "[VULNERABLE] " : "[OK] "; var isVuln = packageLockJson.packages[packageName].version == vulnPackage.version ? "[VULNERABLE] " : "[OK] ";
var sameMajor = cleanVersion(packageLockJson.packages[packageName].version).split('.')[0] == vulnPackage.version.split('.')[0]; var sameMajor = cleanVersion(packageLockJson.packages[packageName].version).split('.')[0] == vulnPackage.version.split('.')[0];
@@ -51,7 +50,6 @@ vulnJson.packages.forEach(vulnPackage => {
} }
// Check if dependencies are vuln
for (var dependencyName in packageLockJson.packages[packageName].dependencies) { for (var dependencyName in packageLockJson.packages[packageName].dependencies) {
if (dependencyName.includes(vulnPackage.name)) { if (dependencyName.includes(vulnPackage.name)) {
var isVuln = packageLockJson.packages[packageName].dependencies[dependencyName] == vulnPackage.version ? "[VULNERABLE] " : "[OK] "; var isVuln = packageLockJson.packages[packageName].dependencies[dependencyName] == vulnPackage.version ? "[VULNERABLE] " : "[OK] ";
@@ -69,7 +67,6 @@ vulnJson.packages.forEach(vulnPackage => {
} }
} }
// Check if dev-Dependencies are vuln
for (var dependencyName in packageLockJson.packages[packageName].devDependencies) { for (var dependencyName in packageLockJson.packages[packageName].devDependencies) {
if (dependencyName.includes(vulnPackage.name)) { if (dependencyName.includes(vulnPackage.name)) {
var isVuln = packageLockJson.packages[packageName].devDependencies[dependencyName] == vulnPackage.version ? "[VULNERABLE] " : "[OK] "; var isVuln = packageLockJson.packages[packageName].devDependencies[dependencyName] == vulnPackage.version ? "[VULNERABLE] " : "[OK] ";
@@ -88,7 +85,6 @@ vulnJson.packages.forEach(vulnPackage => {
} }
} }
//console.table(tableOutput);
htmlOutput += "<h4>" + vulnPackage.name + "</h4>" htmlOutput += "<h4>" + vulnPackage.name + "</h4>"
htmlOutput += tableify(tableOutput) htmlOutput += tableify(tableOutput)
tableOutput = []; tableOutput = [];