📜 SAST-Scan 🔍

SAST-Scan is a lightweight, easy-to-use static application security testing (SAST) tool that helps you scan your code for vulnerabilities, providing instant feedback to improve code security! 🚀

Features

1.  Comprehensive Code Scanning – Detects a wide range of security vulnerabilities in your source code.
2.  Fast and Lightweight – Provides quick, real-time scans without affecting performance.
3.  Detailed Vulnerability Reports – Offers clear reports with fixes and line numbers for each vulnerability.
4.  Seamless Integration – Easily integrates with JavaScript frameworks like React and Node.js.
5.  Continuous Updates – Regularly updated to cover new vulnerabilities and security practices.

Installation

You can install the package via npm:

npm install sast-scan

Import the package:

import scanCode from 'sast-scan';

Integrate the scanner into your project:

jsx:

import React, { useState } from 'react';
import scanCode from 'sast-scan'; // Import your npm package
const CodeScanner = () => {
    const [code, setCode] = useState('');
    const [results, setResults] = useState([]);
    const handleScan = () => {
        let vulnerabilities = [];
        try {
            vulnerabilities = scanCode(code); // Scan the code
        } catch (error) {
            console.error(Error scanning code: ${error.message});
        }
        setResults(vulnerabilities);
    };
    return (
        

            Code Scanner

                            value={code}
                onChange={(e) => setCode(e.target.value)}
                placeholder="Enter code to scan"
            />
            
            
                {results.map((result, index) => (
                    
                         Vulnerability: {result.message}

                         Fix: {result.fix}

                         Line Number: {result.lineNumber}

                    

                ))}
            

        

    );
};export default CodeScanner;

Example Output:

• Vulnerability: The vulnerability description • Fix: Suggested fix • Line Number: Line number of the issue Note: you can refer dev.to Article for more informatation

License

Features

1. Comprehensive Code Scanning – Detects a wide range of security vulnerabilities in your source code. 2. Fast and Lightweight – Provides quick, real-time scans without affecting performance. 3. Detailed Vulnerability Reports – Offers clear reports with fixes and line numbers for each vulnerability. 4. Seamless Integration – Easily integrates with JavaScript frameworks like React and Node.js. 5. Continuous Updates – Regularly updated to cover new vulnerabilities and security practices.

Integrate the scanner into your project:

jsx:

import React, { useState } from 'react'; import scanCode from 'sast-scan'; // Import your npm package const CodeScanner = () => { const [code, setCode] = useState(''); const [results, setResults] = useState([]); const handleScan = () => { let vulnerabilities = []; try { vulnerabilities = scanCode(code); // Scan the code } catch (error) { console.error(Error scanning code: ${error.message}); } setResults(vulnerabilities); }; return ( Code Scanner value={code} onChange={(e) => setCode(e.target.value)} placeholder="Enter code to scan" /> {results.map((result, index) => ( Vulnerability: {result.message} Fix: {result.fix} Line Number: {result.lineNumber} ))} ); };

export default CodeScanner;

Example Output:

• Vulnerability: The vulnerability description • Fix: Suggested fix • Line Number: Line number of the issue Note: you can refer dev.to Article for more informatation