Skip to content

OWASP/cve-lite-cli

v1.3.0 Feature

This release adds 3 notable features for engineering teams evaluating rollout.

Published 1mo Vulnerability Scanning
✓ No known CVEs patched
Read the diff → Tool health → What is this tool? →

✓ No known CVEs patched in this version

Topics

security cve javascript nodejs owasp security-tools

Summary

AI summary

Added package-manager-aware suggested fix commands for urgent findings.

Full changelog

Added

  • package-manager-aware suggested fix commands for urgent findings
    • package-lock.json -> npm install ...
    • pnpm-lock.yaml -> pnpm add ...
    • yarn.lock -> yarn add ...
  • explicit skipped-item output for urgent findings that cannot be fixed confidently
  • -v / --version support

Changed

  • improved output flow so suggested fix commands are easier to notice
  • CLI banner now includes the tool version
  • README now documents the new remediation workflow with a concrete fix-command example
  • screenshots were refreshed to match the current output

Example

npm install [email protected] [email protected] [email protected]
View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track OWASP/cve-lite-cli

Get notified when new releases ship.

Sign up free

About OWASP/cve-lite-cli

All releases →

Related context

Beta — feedback welcome: [email protected]