Gammaray is a software that helps developers to look for vulnerabilities on their Node.js applications. Its pluggable infrastructure makes very easy to write an integration with several vulnerabilities databases.
In order to get it just run:
$> go get github.com/nearform/gammaray
Once it is finished, you should have the
gammaray binary in your
Gammaray comes as a single binary so you only need to run it passing your project as argument:
$> gammaray <path-to-your-node-app>
And that is all, all the vulnerabilities that affect your packages will be displayed.
As a developer
Clone the repository, then start hacking, PRs are welcome !
$> mkdir -p $GOPATH/src/github.com/nearform/ $> cd $GOPATH/src/github.com/nearform/ $> git clone https://github.com/nearform/gammaray.git $> cd gammaray $> make dev-install
As security provider
You want to be integrated? Contact me here