[{"data":1,"prerenderedAt":816},["ShallowReactive",2],{"docs-page:\u002Fdocs\u002Fcli\u002Faudit":3,"docs-pages":469},{"id":4,"title":5,"body":6,"description":440,"extension":462,"meta":463,"navigation":464,"path":465,"seo":466,"stem":467,"__hash__":468},"docs\u002Fdocs\u002Fcli\u002Faudit.md","scpm audit",{"type":7,"value":8,"toc":439},"minimark",[9,16,30,34,39,46,49,69,74,92,100,106,112,118,121,132,136,148,154,157,175,181,184,187,193,196,202,208,211,217,220,226,232,238,246,252,255,277,283,286,311,317,320,333,339,342,354,360,363,384,390,393,396,399,408,411,415,418,422,425,429,432,436],[10,11,13],"h1",{"id":12},"scpm-audit",[14,15,5],"code",{},[17,18,19],"ul",{},[20,21,22,26,27],"li",{},[23,24,25],"strong",{},"Usage",": ",[14,28,29],{},"scpm audit [FLAGS]",[31,32,33],"p",{},"Check installed packages against the registry advisory DB",[35,36,38],"h2",{"id":37},"flags","Flags",[40,41,43],"h3",{"id":42},"audit-level-audit_level",[14,44,45],{},"--audit-level \u003CAUDIT_LEVEL>",[31,47,48],{},"Only print advisories at or above this severity.",[31,50,51,52,55,56,55,59,55,62,65,66,68],{},"One of: ",[14,53,54],{},"low",", ",[14,57,58],{},"moderate",[14,60,61],{},"high",[14,63,64],{},"critical",". Default: ",[14,67,54],{},".",[31,70,71],{},[23,72,73],{},"Choices:",[17,75,76,80,84,88],{},[20,77,78],{},[14,79,54],{},[20,81,82],{},[14,83,58],{},[20,85,86],{},[14,87,61],{},[20,89,90],{},[14,91,64],{},[31,93,94,97,98],{},[23,95,96],{},"Default:"," ",[14,99,54],{},[40,101,103],{"id":102},"d-dev",[14,104,105],{},"-D --dev",[31,107,108,109],{},"Only audit ",[14,110,111],{},"devDependencies",[40,113,115],{"id":114},"fix-fix",[14,116,117],{},"--fix \u003CFIX>",[31,119,120],{},"Fix advisories.",[31,122,123,124,127,128,131],{},"Bare ",[14,125,126],{},"--fix"," writes package.json overrides for backwards compatibility. ",[14,129,130],{},"--fix=update"," refreshes the lockfile without writing overrides.",[31,133,134],{},[23,135,73],{},[17,137,138,143],{},[20,139,140],{},[14,141,142],{},"update",[20,144,145],{},[14,146,147],{},"override",[40,149,151],{"id":150},"ignore-id",[14,152,153],{},"--ignore… \u003CID>",[31,155,156],{},"Drop advisories whose ID matches one of these values.",[31,158,159,160,55,163,166,167,170,171,174],{},"Matches against the numeric npm advisory ",[14,161,162],{},"id",[14,164,165],{},"github_advisory_id"," (",[14,168,169],{},"GHSA-…","), and any entry in ",[14,172,173],{},"cves[]"," (case-insensitive). Repeatable; comma-separated values are also accepted.",[40,176,178],{"id":177},"ignore-registry-errors",[14,179,180],{},"--ignore-registry-errors",[31,182,183],{},"Use exit code 0 if the registry responds with an error.",[31,185,186],{},"Useful when audit checks run in CI and the registry has a hiccup.",[40,188,190],{"id":189},"ignore-unfixable",[14,191,192],{},"--ignore-unfixable",[31,194,195],{},"Drop advisories that have no non-vulnerable upgrade.",[31,197,198,199,201],{},"Filters out advisories for which no non-vulnerable version is available in the package's packument. Same \"best non-vulnerable\" logic as ",[14,200,126],{},": an advisory is kept only when an upgrade path exists.",[40,203,205],{"id":204},"i-interactive",[14,206,207],{},"-i --interactive",[31,209,210],{},"Pick which advisories to fix interactively",[40,212,214],{"id":213},"json",[14,215,216],{},"--json",[31,218,219],{},"Emit the report as JSON (pnpm-compatible shape) instead of a table",[40,221,223],{"id":222},"no-optional",[14,224,225],{},"--no-optional",[31,227,228,229],{},"Skip ",[14,230,231],{},"optionalDependencies",[40,233,235],{"id":234},"p-prod",[14,236,237],{},"-P --prod",[31,239,108,240,243,244],{},[14,241,242],{},"dependencies"," and ",[14,245,231],{},[40,247,249],{"id":248},"fetch-retries-n",[14,250,251],{},"--fetch-retries \u003CN>",[31,253,254],{},"Number of retry attempts for failed registry fetches.",[31,256,257,258,261,262,265,266,261,269,272,273,276],{},"Overrides ",[14,259,260],{},"fetchRetries"," \u002F ",[14,263,264],{},"fetch-retries"," from ",[14,267,268],{},".npmrc",[14,270,271],{},"scpm-workspace.yaml"," when set. Pair with ",[14,274,275],{},"--fetch-timeout"," to fail fast in scripted test runs.",[40,278,280],{"id":279},"fetch-retry-factor-n",[14,281,282],{},"--fetch-retry-factor \u003CN>",[31,284,285],{},"Exponential backoff factor between retry attempts.",[31,287,257,288,261,291,265,294,261,296,298,299,302,303,306,307,310],{},[14,289,290],{},"fetchRetryFactor",[14,292,293],{},"fetch-retry-factor",[14,295,268],{},[14,297,271],{}," when set. Integer-only — the underlying ",[14,300,301],{},"FetchPolicy.retry_factor"," is ",[14,304,305],{},"u32",". Fractional values like ",[14,308,309],{},"1.5"," are rejected by clap.",[40,312,314],{"id":313},"fetch-retry-maxtimeout-ms",[14,315,316],{},"--fetch-retry-maxtimeout \u003CMS>",[31,318,319],{},"Upper bound (ms) on the computed retry backoff.",[31,321,257,322,261,325,265,328,261,330,332],{},[14,323,324],{},"fetchRetryMaxtimeout",[14,326,327],{},"fetch-retry-maxtimeout",[14,329,268],{},[14,331,271],{}," when set.",[40,334,336],{"id":335},"fetch-retry-mintimeout-ms",[14,337,338],{},"--fetch-retry-mintimeout \u003CMS>",[31,340,341],{},"Lower bound (ms) on the computed retry backoff.",[31,343,257,344,261,347,265,350,261,352,332],{},[14,345,346],{},"fetchRetryMintimeout",[14,348,349],{},"fetch-retry-mintimeout",[14,351,268],{},[14,353,271],{},[40,355,357],{"id":356},"fetch-timeout-ms",[14,358,359],{},"--fetch-timeout \u003CMS>",[31,361,362],{},"Per-request HTTP timeout in milliseconds.",[31,364,257,365,261,368,265,371,261,373,375,376,379,380,383],{},[14,366,367],{},"fetchTimeout",[14,369,370],{},"fetch-timeout",[14,372,268],{},[14,374,271],{}," when set. Applied via ",[14,377,378],{},"reqwest","'s ",[14,381,382],{},".timeout()"," so it covers headers + body together.",[40,385,387],{"id":386},"registry-url",[14,388,389],{},"--registry \u003CURL>",[31,391,392],{},"Override the default registry URL for this invocation.",[31,394,395],{},"Use this npm registry URL for package metadata, tarballs, audit requests, dist-tags, and registry writes.",[31,397,398],{},"Examples:",[31,400,401,402],{},"$ scpm audit\nSeverity  Package    Vulnerable  Title\nmoderate  minimatch  \u003C3.0.5      Regular Expression Denial of Service\n",[403,404,405],"a",{"href":405,"rel":406},"https:\u002F\u002Fgithub.com\u002Fadvisories\u002FGHSA-f8q6-p94x",[407],"nofollow",[31,409,410],{},"1 vulnerability found",[10,412,414],{"id":413},"only-fail-on-high-and-above","Only fail on high and above",[31,416,417],{},"$ scpm audit --audit-level high",[10,419,421],{"id":420},"skip-optional-deps-and-dev-deps","Skip optional deps and dev deps",[31,423,424],{},"$ scpm audit --prod --no-optional",[10,426,428],{"id":427},"pipe-into-jq","Pipe into jq",[31,430,431],{},"$ scpm audit --json | jq '.advisories | length'",[10,433,435],{"id":434},"clean","Clean",[31,437,438],{},"$ scpm audit\nNo known vulnerabilities found",{"title":440,"searchDepth":441,"depth":441,"links":442},"",2,[443],{"id":37,"depth":441,"text":38,"children":444},[445,447,448,449,450,451,452,453,454,455,456,457,458,459,460,461],{"id":42,"depth":446,"text":45},3,{"id":102,"depth":446,"text":105},{"id":114,"depth":446,"text":117},{"id":150,"depth":446,"text":153},{"id":177,"depth":446,"text":180},{"id":189,"depth":446,"text":192},{"id":204,"depth":446,"text":207},{"id":213,"depth":446,"text":216},{"id":222,"depth":446,"text":225},{"id":234,"depth":446,"text":237},{"id":248,"depth":446,"text":251},{"id":279,"depth":446,"text":282},{"id":313,"depth":446,"text":316},{"id":335,"depth":446,"text":338},{"id":356,"depth":446,"text":359},{"id":386,"depth":446,"text":389},"md",{},true,"\u002Fdocs\u002Fcli\u002Faudit",{"title":5,"description":440},"docs\u002Fcli\u002Faudit","qf2uKJderDzKnBpvGoWhxh4SzViS7ZqbwCCr4pEg6qg",[470,473,476,479,482,483,486,489,492,495,498,501,504,507,510,513,516,519,522,525,528,531,534,537,540,543,546,549,552,555,558,561,564,567,570,573,576,579,582,585,588,591,594,597,600,603,606,609,612,615,618,621,624,627,630,633,636,639,642,645,648,651,654,657,660,663,666,669,672,675,678,681,684,687,690,693,696,699,702,705,708,711,714,717,720,723,726,729,732,735,738,741,744,747,750,753,756,759,762,765,768,771,774,777,780,783,786,789,792,795,798,801,804,807,810,813],{"path":471,"title":472},"\u002Fdocs\u002Fbenchmarks","Benchmarks",{"path":474,"title":475},"\u002Fdocs\u002Fbun-users","For bun users",{"path":477,"title":478},"\u002Fdocs\u002Fcli\u002Fadd","scpm add",{"path":480,"title":481},"\u002Fdocs\u002Fcli\u002Fapprove-builds","scpm approve-builds",{"path":465,"title":5},{"path":484,"title":485},"\u002Fdocs\u002Fcli\u002Fbin","scpm bin",{"path":487,"title":488},"\u002Fdocs\u002Fcli\u002Fcache","scpm cache",{"path":490,"title":491},"\u002Fdocs\u002Fcli\u002Fcache\u002Fdelete","scpm cache delete",{"path":493,"title":494},"\u002Fdocs\u002Fcli\u002Fcache\u002Flist","scpm cache list",{"path":496,"title":497},"\u002Fdocs\u002Fcli\u002Fcache\u002Flist-registries","scpm cache list-registries",{"path":499,"title":500},"\u002Fdocs\u002Fcli\u002Fcache\u002Fprune","scpm cache prune",{"path":502,"title":503},"\u002Fdocs\u002Fcli\u002Fcache\u002Fview","scpm cache view",{"path":505,"title":506},"\u002Fdocs\u002Fcli\u002Fcat-file","scpm cat-file",{"path":508,"title":509},"\u002Fdocs\u002Fcli\u002Fcat-index","scpm cat-index",{"path":511,"title":512},"\u002Fdocs\u002Fcli\u002Fcheck","scpm check",{"path":514,"title":515},"\u002Fdocs\u002Fcli\u002Fci","scpm ci",{"path":517,"title":518},"\u002Fdocs\u002Fcli\u002Fclean","scpm clean",{"path":520,"title":521},"\u002Fdocs\u002Fcli\u002Fcompletion","scpm completion",{"path":523,"title":524},"\u002Fdocs\u002Fcli\u002Fconfig","scpm config",{"path":526,"title":527},"\u002Fdocs\u002Fcli\u002Fconfig\u002Fdelete","scpm config delete",{"path":529,"title":530},"\u002Fdocs\u002Fcli\u002Fconfig\u002Fexplain","scpm config explain",{"path":532,"title":533},"\u002Fdocs\u002Fcli\u002Fconfig\u002Ffind","scpm config find",{"path":535,"title":536},"\u002Fdocs\u002Fcli\u002Fconfig\u002Fget","scpm config get",{"path":538,"title":539},"\u002Fdocs\u002Fcli\u002Fconfig\u002Flist","scpm config list",{"path":541,"title":542},"\u002Fdocs\u002Fcli\u002Fconfig\u002Fset","scpm config set",{"path":544,"title":545},"\u002Fdocs\u002Fcli\u002Fconfig\u002Ftui","scpm config tui",{"path":547,"title":548},"\u002Fdocs\u002Fcli\u002Fcreate","scpm create",{"path":550,"title":551},"\u002Fdocs\u002Fcli\u002Fdedupe","scpm dedupe",{"path":553,"title":554},"\u002Fdocs\u002Fcli\u002Fdeploy","scpm deploy",{"path":556,"title":557},"\u002Fdocs\u002Fcli\u002Fdeprecate","scpm deprecate",{"path":559,"title":560},"\u002Fdocs\u002Fcli\u002Fdeprecations","scpm deprecations",{"path":562,"title":563},"\u002Fdocs\u002Fcli\u002Fdiag","scpm diag",{"path":565,"title":566},"\u002Fdocs\u002Fcli\u002Fdiag\u002Fanalyze","scpm diag analyze",{"path":568,"title":569},"\u002Fdocs\u002Fcli\u002Fdiag\u002Fcompare","scpm diag compare",{"path":571,"title":572},"\u002Fdocs\u002Fcli\u002Fdist-tag","scpm dist-tag",{"path":574,"title":575},"\u002Fdocs\u002Fcli\u002Fdist-tag\u002Fadd","scpm dist-tag add",{"path":577,"title":578},"\u002Fdocs\u002Fcli\u002Fdist-tag\u002Fls","scpm dist-tag ls",{"path":580,"title":581},"\u002Fdocs\u002Fcli\u002Fdist-tag\u002Frm","scpm dist-tag rm",{"path":583,"title":584},"\u002Fdocs\u002Fcli\u002Fdlx","scpm dlx",{"path":586,"title":587},"\u002Fdocs\u002Fcli\u002Fdoctor","scpm doctor",{"path":589,"title":590},"\u002Fdocs\u002Fcli\u002Fexec","scpm exec",{"path":592,"title":593},"\u002Fdocs\u002Fcli\u002Ffetch","scpm fetch",{"path":595,"title":596},"\u002Fdocs\u002Fcli\u002Ffind-hash","scpm find-hash",{"path":598,"title":599},"\u002Fdocs\u002Fcli\u002Fignored-builds","scpm ignored-builds",{"path":601,"title":602},"\u002Fdocs\u002Fcli\u002Fimport","scpm import",{"path":604,"title":605},"\u002Fdocs\u002Fcli","scpm",{"path":607,"title":608},"\u002Fdocs\u002Fcli\u002Finit","scpm init",{"path":610,"title":611},"\u002Fdocs\u002Fcli\u002Finstall","scpm install",{"path":613,"title":614},"\u002Fdocs\u002Fcli\u002Flicenses","scpm licenses",{"path":616,"title":617},"\u002Fdocs\u002Fcli\u002Flink","scpm link",{"path":619,"title":620},"\u002Fdocs\u002Fcli\u002Flist","scpm list",{"path":622,"title":623},"\u002Fdocs\u002Fcli\u002Flogin","scpm login",{"path":625,"title":626},"\u002Fdocs\u002Fcli\u002Flogout","scpm logout",{"path":628,"title":629},"\u002Fdocs\u002Fcli\u002Foutdated","scpm outdated",{"path":631,"title":632},"\u002Fdocs\u002Fcli\u002Fpack","scpm pack",{"path":634,"title":635},"\u002Fdocs\u002Fcli\u002Fpatch","scpm patch",{"path":637,"title":638},"\u002Fdocs\u002Fcli\u002Fpatch-commit","scpm patch-commit",{"path":640,"title":641},"\u002Fdocs\u002Fcli\u002Fpatch-remove","scpm patch-remove",{"path":643,"title":644},"\u002Fdocs\u002Fcli\u002Fpeers","scpm peers",{"path":646,"title":647},"\u002Fdocs\u002Fcli\u002Fpeers\u002Fcheck","scpm peers check",{"path":649,"title":650},"\u002Fdocs\u002Fcli\u002Fprune","scpm prune",{"path":652,"title":653},"\u002Fdocs\u002Fcli\u002Fpublish","scpm publish",{"path":655,"title":656},"\u002Fdocs\u002Fcli\u002Fpurge","scpm purge",{"path":658,"title":659},"\u002Fdocs\u002Fcli\u002Fquery","scpm query",{"path":661,"title":662},"\u002Fdocs\u002Fcli\u002Frebuild","scpm rebuild",{"path":664,"title":665},"\u002Fdocs\u002Fcli\u002Frecursive","scpm recursive",{"path":667,"title":668},"\u002Fdocs\u002Fcli\u002Fremove","scpm remove",{"path":670,"title":671},"\u002Fdocs\u002Fcli\u002Frestart","scpm restart",{"path":673,"title":674},"\u002Fdocs\u002Fcli\u002Froot","scpm root",{"path":676,"title":677},"\u002Fdocs\u002Fcli\u002Frun","scpm run",{"path":679,"title":680},"\u002Fdocs\u002Fcli\u002Fsbom","scpm sbom",{"path":682,"title":683},"\u002Fdocs\u002Fcli\u002Fsponsors","scpm sponsors",{"path":685,"title":686},"\u002Fdocs\u002Fcli\u002Fstage","scpm stage",{"path":688,"title":689},"\u002Fdocs\u002Fcli\u002Fstart","scpm start",{"path":691,"title":692},"\u002Fdocs\u002Fcli\u002Fstop","scpm stop",{"path":694,"title":695},"\u002Fdocs\u002Fcli\u002Fstore","scpm store",{"path":697,"title":698},"\u002Fdocs\u002Fcli\u002Fstore\u002Fadd","scpm store add",{"path":700,"title":701},"\u002Fdocs\u002Fcli\u002Fstore\u002Fpath","scpm store path",{"path":703,"title":704},"\u002Fdocs\u002Fcli\u002Fstore\u002Fprune","scpm store prune",{"path":706,"title":707},"\u002Fdocs\u002Fcli\u002Fstore\u002Fstatus","scpm store status",{"path":709,"title":710},"\u002Fdocs\u002Fcli\u002Ftest","scpm test",{"path":712,"title":713},"\u002Fdocs\u002Fcli\u002Fundeprecate","scpm undeprecate",{"path":715,"title":716},"\u002Fdocs\u002Fcli\u002Funlink","scpm unlink",{"path":718,"title":719},"\u002Fdocs\u002Fcli\u002Funpublish","scpm unpublish",{"path":721,"title":722},"\u002Fdocs\u002Fcli\u002Fupdate","scpm update",{"path":724,"title":725},"\u002Fdocs\u002Fcli\u002Fversion","scpm version",{"path":727,"title":728},"\u002Fdocs\u002Fcli\u002Fview","scpm view",{"path":730,"title":731},"\u002Fdocs\u002Fcli\u002Fwhy","scpm why",{"path":733,"title":734},"\u002Fdocs\u002Ferror-codes","Error and warning codes",{"path":736,"title":737},"\u002Fdocs\u002Fgetting-started","Getting Started",{"path":739,"title":740},"\u002Fdocs\u002Fguide","Guide",{"path":742,"title":743},"\u002Fdocs","SCPM Documentation",{"path":745,"title":746},"\u002Fdocs\u002Finstallation","Installation",{"path":748,"title":749},"\u002Fdocs\u002Fnpm-users","For npm users",{"path":751,"title":752},"\u002Fdocs\u002Fpackage-manager\u002Fconfiguration","Configuration",{"path":754,"title":755},"\u002Fdocs\u002Fpackage-manager\u002Fdependencies","Manage dependencies",{"path":757,"title":758},"\u002Fdocs\u002Fpackage-manager\u002Fglobal-virtual-store","Global virtual store",{"path":760,"title":761},"\u002Fdocs\u002Fpackage-manager\u002Finstall","Install dependencies",{"path":763,"title":764},"\u002Fdocs\u002Fpackage-manager\u002Fjailed-builds","Jailed dependency builds",{"path":766,"title":767},"\u002Fdocs\u002Fpackage-manager\u002Flifecycle-scripts","Lifecycle scripts",{"path":769,"title":770},"\u002Fdocs\u002Fpackage-manager\u002Flockfiles","Lockfiles",{"path":772,"title":773},"\u002Fdocs\u002Fpackage-manager\u002Fnode-modules","node_modules layout",{"path":775,"title":776},"\u002Fdocs\u002Fpackage-manager\u002Fpublishing","Publishing",{"path":778,"title":779},"\u002Fdocs\u002Fpackage-manager\u002Fregistry-auth","Registry and auth",{"path":781,"title":782},"\u002Fdocs\u002Fpackage-manager\u002Fscripts","Run scripts and binaries",{"path":784,"title":785},"\u002Fdocs\u002Fpackage-manager\u002Fsecurity-scanner","Security scanner",{"path":787,"title":788},"\u002Fdocs\u002Fpackage-manager\u002Fworkspaces","Workspaces",{"path":790,"title":791},"\u002Fdocs\u002Fpnpm-users","For pnpm users",{"path":793,"title":794},"\u002Fdocs\u002Fsecurity","Security",{"path":796,"title":797},"\u002Fdocs\u002Fsettings\u002Fcli","CLI Settings",{"path":799,"title":800},"\u002Fdocs\u002Fsettings\u002Fenv","Environment Settings",{"path":802,"title":803},"\u002Fdocs\u002Fsettings","Settings",{"path":805,"title":806},"\u002Fdocs\u002Fsettings\u002Fnpmrc",".npmrc Settings",{"path":808,"title":809},"\u002Fdocs\u002Fsettings\u002Fworkspace-yaml","Workspace YAML Settings",{"path":811,"title":812},"\u002Fdocs\u002Ftroubleshooting","Troubleshooting",{"path":814,"title":815},"\u002Fdocs\u002Fyarn-users","For yarn users",1780584396930]