Description
Catch known-vulnerable dependencies before they reach main, especially important given this service handles custodial private keys.
Deliverables
- CI step running
npm audit --audit-level=high (or equivalent) and failing the build on high/critical findings
Depends on
None
Description
Catch known-vulnerable dependencies before they reach main, especially important given this service handles custodial private keys.
Deliverables
npm audit --audit-level=high(or equivalent) and failing the build on high/critical findingsDepends on
None