Results for bundle-audit

No description provided.

@continuous-security/scanner-ruby-bundle-auditv2.0.1

Run bundle-audit against your ruby codebase.

verdaccio-auditv13.0.2

Verdaccio Middleware plugin to bypass npmjs audit

audit-civ7.1.0

Audits NPM, Yarn, and PNPM projects in CI environments

openpgpv6.3.0

OpenPGP.js is a Javascript implementation of the OpenPGP protocol. This is defined in RFC 4880.

npm-audit-reportv8.0.0

Given a response from the npm security api, render it into a variety of security reports

bundle-namev4.1.0

Abandoned. Last published 2 years ago.

Get bundle name from a bundle identifier (macOS): `com.apple.Safari` → `Safari`

npm-audit-resolverv3.0.0-RC.0

Abandoned. Last published 3 years ago.

Aids humans and automation in managing npm audit results

codeowners-auditv2.9.0

Generate an HTML report for CODEOWNERS ownership gaps and run in CI or from the CLI to fail when files are not covered.

better-npm-auditv3.11.0

Reshape into a better npm audit for the community and encourage more people to include security audit into their process.

audit-resolve-corev3.0.0-3

Abandoned. Last published 4 years ago.

Core modules for audit-resolve.json file and logic of its processing

yarn-audit-fixv10.1.1

The missing `yarn audit fix`

@sap/audit-loggingv7.0.1

Provides audit logging functionalities for Node.js applications

webpack-bundle-analyzerv5.3.0

Webpack plugin and CLI utility that represents bundle content as convenient interactive zoomable treemap

improved-yarn-auditv3.0.4

Aging — last published 10 months ago — check before adopting.

A wrapper around yarn audit that fixes many issues

escodegenv2.1.0

Abandoned. Last published 2 years ago.

ECMAScript code generator

bundle-requirev5.1.0

Aging — last published over a year ago — check before adopting.

bundle and require a file

auditor-lambdav0.7.0

Portable hybrid code-auditing framework for arbitrary repositories.

@descope/audit-management-widgetv0.7.2

Descope audit management widget

@sigstore/bundlev5.0.0

Sigstore bundle type

codeownersv5.1.1

Abandoned. Last published 4 years ago.

A tool for working with CODEOWNERS files

oci-auditv2.132.0

OCI NodeJS client for Audit Service

@chax-at/better-npm-auditv3.6.11

Aging — last published 10 months ago — check before adopting.

Reshape into a better npm audit for the community and encourage more people to include security audit into their process.

graphql-httpv1.22.4

Aging — last published over a year ago — check before adopting.

Simple, pluggable, zero-dependency, GraphQL over HTTP spec compliant server, client and audit suite.

RubyGems matches

Exact match · Ruby

bundle-auditv0.2.0

Worth a look. Actively maintained and growing, actively maintained.

Just requires bundler-audit, if you've mistakenly required bundle-audit

capistrano-bundle_auditv0.4.0

Abandoned. Last published 5 years ago.

Audit a project's gem dependencies before deployment

bundler-auditv0.9.3

Aging — last published 6 months ago — check before adopting.

bundler-audit provides patch-level verification for Bundled apps.

MaintenanceAging

PopularityWidely used

SecurityClean

DepsZero deps

mrjoy-bundler-auditv0.3.7

Abandoned. Last published 11 years ago.

An improved version of bundler-audit provides patch-level verification for Bundled apps

bundler-audit-ngv0.6.2

Abandoned. Last published 6 years ago.

bundler-audit provides patch-level verification for Bundled apps.

dep_upgradev0.4.0

Abandoned. Last published 7 years ago.

`rails dep:upgrade` runs `bundle update`, `bundle audit`, `yarn upgrade` to update your app dependencies, then generates a markdown summary for your pull/merge request.

bundler-buditv0.6.3

Abandoned. Last published 7 years ago.

bundler-budit is a fork of bundler-audit, which provides patch-level verification for Bundled apps.

bundle-patchv0.4.0

Aging — last published over a year ago — check before adopting.

bundle-patch is a CLI tool that detects vulnerable gems in your Gemfile and automatically upgrades them to a patchable version based on your configured strategy (patch/minor/all). Uses bundler-audit under the hood.

pikuri-corev0.0.4

Maintained. Niche but maintained, actively maintained.

pikuri-core is the lean, audit-friendly foundation of the pikuri family: Pikuri::Agent (a thin wrapper around ruby_llm's chat loop) with its Configurator + Extension protocol, the strict Pikuri::Tool framework, a listener surface for rendering / budgets / sub-agents, and four bundled stateless tools (calculator, web search, web scrape, fetch). Extensions (skills, MCP, workspace, coding stack, named-agent personas) live in sibling gems so a privacy-conscious user can install just this core and audit a minimal dependency tree. For the convenience bundle that pulls in everything, see the +pikuri+ metagem.

still_activev1.5.0

Maintained. Niche but maintained, actively maintained.

Analyses your Gemfile for dependency health: checks if gems are actively maintained (last commit dates via GitHub and GitLab, release dates), outdated versions, archived repos, OpenSSF Scorecard security scores, known vulnerabilities via deps.dev, and libyear drift. Ruby version freshness with EOL detection. Handles rubygems, git, path, and GitHub Packages sources. Outputs coloured terminal tables, markdown, or JSON. CI quality gates with --fail-if-critical, --fail-if-warning, --fail-if-vulnerable, --fail-if-outdated, and --ignore. A comprehensive alternative to running bundle outdated, bundler-audit, and libyear-bundler separately.

rails-ctov0.2.1

Maintained. Niche but maintained, actively maintained.

rails-cto bundles the quality toolchain (RuboCop, Reek, Flog, Flay, Brakeman, bundler-audit, SimpleCov, Herb) that the rails-cto Claude plugin expects, and ships matching configuration templates you can drop into any Rails app with `rails-cto init`. It also provides a custom RuboCop cop that enforces the Minitest::Spec `subject` convention used by the plugin's skills.

pikuriv0.0.4