njsscan Integration Guide

Integrate njsscan with Vulnetix. Scan Node.js applications for security vulnerabilities using semantic analysis with SARIF output.

Install & scan

$ uv run --with njsscan njsscan --version
$ uv run --with njsscan njsscan --sarif -o njsscan.sarif .

Run njsscan in CI

Scan on every push and upload the results to Vulnetix:

- name: Run njsscan
  run: |
    pip install njsscan
    njsscan --sarif -o njsscan.sarif .

- name: Upload to Vulnetix
  run: vulnetix upload --file njsscan.sarif

Centralise njsscan results in Vulnetix

Upload njsscan SARIF output to the Vulnetix platform to deduplicate findings, prioritise them with EPSS, CISA KEV and Coalition ESS exploit intelligence, and track remediation across every scanner in a single queue.

njsscan documentation ↗  ·  Source repository ↗

Wire njsscan into your CI/CD pipeline →