Skip to content

OWASP/cve-lite-cli

Vulnerability Scanning

A terminal‑based vulnerability scanner that reads lockfiles locally, queries OSV for advisories, and outputs copy‑and‑run fix commands scoped to your package manager.

Track releases GitHub
TypeScript Latest v1.19.1 · 1d ago Security brief →

Features

  • Produces ready‑to‑run fix commands (npm/pnpm/yarn/Bun) for each finding
  • Distinguishes direct vs. transitive vulnerabilities and suggests parent updates when possible
  • Optional usage analysis to filter out unused dependencies, reducing noise
  • Works offline with a synced advisory database

Recent releases

View all 39 releases →
Review required
v1.19.1 Bug fix
Dependencies

Transitive fix detection and refresh suggestion

Open
No immediate action
v1.19.0 Mixed

Monorepo multi‑folder scan + version parse fix

Open
No immediate action
v1.18.2 Bug fix

Show unknown‑severity findings

Open
Config change
v1.18.1 New feature
Crypto / TLS Dependencies

Corporate SSL proxy support

Open
No immediate action
v1.18.0 New feature

Lockfile refresh fixes

Open

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

About

Stars
327
Forks
43
Languages
TypeScript JavaScript CSS
View on GitHub Documentation

Install & Platforms

Install via
npm

Community & Support

Slack

Similar tools

ota-run/ota](https:
LiteParse v2
qwexvf/aegis-cli
UPinar/contrastapi
plexe

Beta — feedback welcome: [email protected]