Security developer Snyk has published a free extension for Microsoft’s popular Visual Studio Code editor that finds vulnerabilities in NPM packages.
Introduced April 2, the open source Snyk Vuln Cost extension serves as a security scanner, providing feedback inline as developers code. With 80 percent to 90 percent of code today being heavily dependent on open source packages, developers need to know what these packages do, Brian Vermeer, Vuln Cost project lead, said.
Advertise on IT Security News.
Read the complete article: Visual Studio Code extension flags NPM vulnerabilities