nodejsscan is a static security code scanner for Node.js applications.
nodejsscan v4.4
nodejsscan v4.3
nodejsscan v4.2 powered by njsscan and semgrep 100+ node.js specific rules Performance improvements Single Line and Multiline comment handling Bug Fixes
nodejsscan v4 powered by njsscan and semgrep Windows support dropped from v4. (Windows users can use docker image)