pnpm audit
Checks for known security issues with the installed packages. If security issues are found, try to update your dependencies via pnpm update. If a simple update does not fix all the issues, use overrides to force versions that are not vulnerable. For instance, if lodash@<2.1.0 is vulnerable, use overrides to force lodash@^2.1.0. Details at: https://pnpm.io/cli/audit
Options
| Name | Description |
|---|---|
--audit-level <Audit Level> | Only print advisories with severity greater than or equal to <severity> |
--json | Output audit report in JSON format |
--dev, -D | Only audit dev dependencies |
--prod, -P | Only audit production dependencies |
--no-optional | Don't audit optionalDependencies |
--ignore-registry-errors | If the registry responds with a non-200 status code, the process should exit with 0. So the process will fail only if the registry actually successfully responds with found vulnerabilities |