Static Application Security Testing for JavaScript [on hold]

199
January 20, 2019, at 7:20 PM

can anybody recommend open-source SAST Tools for JavaScript and NodeJS. I'm currently using NodeJSScan which is OK but has a very limited ruleset and SonarQube with the SonarJS plugin which is - regarding security checks - not good. I did some very basic benchmarking (with intetional vulnerable applications) and SonarJS did not detect one vulnerability.

Thank you

LAST QUESTIONS
All questions
Rent Charter Buses Company
POPULAR ONLINE
jQuery Categories

BookshelfJS A valid target model must be defined for the hasOne relation

Using Numpy to load in Large data files?

CSS - text-overflow not workin in IE10

Open movie in the area of the gray background

MySQL: subtract different rows depending on different colums

READ ALSO
How to use different match in populate base on the found value?
Node.js

How to use different match in populate base on the found value?

I want to use different match condition in populate base on the record's one field valueI have tried use $where in find(), but it cannot find in populate field

 157
Building a Docker image for a Node.js app in GitLab CI
Node.js

Building a Docker image for a Node.js app in GitLab CI

I'm working on a Nodejs application for which my current Dockerfile looks like this:

 193
How to Nest Divs
HTML

How to Nest Divs

So, what I am trying to do, is put a div inside a divThe text editor reads the second div's end as the first one's

 70
Loading unicode json fails due to unicode error
Python

Loading unicode json fails due to unicode error

I'm given some input that I must parse and convert to a DictI don't control how the input is generated

 195