If so, I just saw an excellent tool on Reddit. It's a repository of NPM vulnerabilities - and a few features that include paid features. If I was running a business that was doing JavaScript work, I'd consider this. I might consider this (the free stuff) so that I can have it check my WordPress plugins once a month. I'd just need to upload 'em to a private repo at GitHub, I think...
Anyhow, if you're a web dev you'll know more about this than I do, but I'm pretty sure it's great:
Anyhow, if you're a web dev you'll know more about this than I do, but I'm pretty sure it's great: