{"library":"njsscan","title":"njsscan","description":"njsscan is a Static Application Security Testing (SAST) tool designed to identify insecure code patterns within Node.js applications. It leverages the `semgrep` engine for its scanning capabilities. The library is actively maintained, currently at version 0.4.3, with frequent minor updates focusing on rule improvements, performance, and bug fixes.","language":"python","status":"active","last_verified":"Fri Apr 17","install":{"commands":["pip install njsscan","pip install semgrep"],"cli":{"name":"njsscan","version":"\u001b[34m"}},"imports":["from njsscan.cli import main"],"auth":{"required":false,"env_vars":[]},"quickstart":{"code":"njsscan -p ./my_nodejs_project -o results.json -f json\ncat results.json","lang":"bash","description":"njsscan is primarily used as a command-line tool. This example demonstrates how to scan a Node.js project located at `./my_nodejs_project` and output the results to a JSON file.","tag":null,"tag_description":null,"last_tested":null,"results":[]},"compatibility":null}