{"id":15416532,"url":"https://github.com/jahilldev/audit-teamcity-report","last_synced_at":"2026-04-19T19:32:05.282Z","repository":{"id":57145255,"uuid":"330661343","full_name":"jahilldev/audit-teamcity-report","owner":"jahilldev","description":"Simple CLI that loads local project dependencies and outputs an NPM audit in TeamCity service message format.","archived":false,"fork":false,"pushed_at":"2022-02-09T13:00:20.000Z","size":297,"stargazers_count":1,"open_issues_count":1,"forks_count":0,"subscribers_count":2,"default_branch":"master","last_synced_at":"2025-09-23T22:28:50.920Z","etag":null,"topics":["cli","continuous-integration","nodejs","npm","npm-audit","reporter","teamcity","tooling","typescript","yarn","yarn-audit"],"latest_commit_sha":null,"homepage":"","language":"TypeScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/jahilldev.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2021-01-18T12:36:46.000Z","updated_at":"2022-02-09T12:00:46.000Z","dependencies_parsed_at":"2022-09-06T00:02:56.927Z","dependency_job_id":null,"html_url":"https://github.com/jahilldev/audit-teamcity-report","commit_stats":null,"previous_names":["jhukdev/audit-teamcity-report"],"tags_count":7,"template":false,"template_full_name":null,"purl":"pkg:github/jahilldev/audit-teamcity-report","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jahilldev%2Faudit-teamcity-report","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jahilldev%2Faudit-teamcity-report/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jahilldev%2Faudit-teamcity-report/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jahilldev%2Faudit-teamcity-report/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/jahilldev","download_url":"https://codeload.github.com/jahilldev/audit-teamcity-report/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jahilldev%2Faudit-teamcity-report/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":32020479,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-04-18T20:23:30.271Z","status":"online","status_checked_at":"2026-04-19T02:00:07.110Z","response_time":55,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["cli","continuous-integration","nodejs","npm","npm-audit","reporter","teamcity","tooling","typescript","yarn","yarn-audit"],"created_at":"2024-10-01T17:12:18.045Z","updated_at":"2026-04-19T19:32:05.262Z","avatar_url":"https://github.com/jahilldev.png","language":"TypeScript","funding_links":[],"categories":[],"sub_categories":[],"readme":"`audit-teamcity-report` is a simple CLI and library that prints out an NPM package audit in TeamCity service message format. Useful for running security audits in CI/CD, and monitoring changes.\n\nThis package calls the NPM restful API directly to gather security vulnerability data and suggestions. This makes it faster than running `npm audit` and then using the output to generate readable TeamCity service messages.\n\n# Getting Started\n\nInstall with Yarn:\n\n```bash\n$ yarn add --dev audit-teamcity-report\n```\n\nInstall with NPM:\n\n```bash\n$ npm i --save-dev audit-teamcity-report\n```\n\n# Demo\n\nWhen the audit identifies vulnerabilities for your packages, a new tab for that build labeled \"Code Inspection\" will appear. You'll get a list of all packages that require an update, with a description and link to the advisory.\n\n![alt text](demo.png)\n\n# Useage\n\nThe package can be used in two ways, via the CLI or by consuming the exported functions. `audit-teamcity-report` will, by default, load your `package.json` file from the current working directory. It'll then check for a `package-lock.json` file, if this isn't found, it will try and load a `yarn.lock` file. If neither lock files are found, it'll run an audit on your top level dependencies only.\n\nIf you'd like to only report on packages installed directly into your project (top level), you can use the `topLevelOnly` argument to do so.\n\n## CLI\n\n```bash\n$ audit-teamcity-report\n```\n\n## Node\n\n```javascript\nimport { readDependencies, auditService, outputReport } from 'audit-teamcity-report';\n\n/*[...]*/\n\nconst project = await readDependencies({ topLevelOnly: false });\nconst result = await auditService(project);\n\n// optional\noutputReport(result);\n```\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fjahilldev%2Faudit-teamcity-report","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fjahilldev%2Faudit-teamcity-report","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fjahilldev%2Faudit-teamcity-report/lists"}