Auditor Job Name: Gitlab Nodejs

Gitlab NodeJsScan performs SAST scanning on repositories containing code written in the following language: javascript.

The analyzer wraps njsscan, a tool that checks NodeJS code for CWEs based on semgrep rules, and is written in Go. It's structured similarly to other Static Analysis analyzers because it uses the shared command package.

Currently the scanner is only supported in the Auditor

Last updated