Subscription

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Learning Hub

Conferences

Free Learning

You're reading from Node.js Web Development Server-side web development made easy with Node 14 using practical examples

Product type Paperback

Published in Jul 2020

Publisher Packt

ISBN-13 9781838987572

Length 760 pages

Edition 5th Edition

Languages

JavaScript

Tools

Node.js

Concepts

Server Side Web Development

Author (1):

David Herron

View More author details

Table of Contents (19) Chapters

Preface

1. Section 1: Introduction to Node.js

2. About Node.js FREE CHAPTER

3. Setting Up Node.js

4. Exploring Node.js Modules

5. HTTP Servers and Clients

6. Section 2: Developing the Express Application

7. Your First Express Application

8. Implementing the Mobile-First Paradigm

9. Data Storage and Retrieval

10. Authenticating Users with a Microservice

11. Dynamic Client/Server Interaction with Socket.IO

12. Section 3: Deployment

13. Deploying Node.js Applications to Linux Servers

14. Deploying Node.js Microservices with Docker

15. Deploying a Docker Swarm to AWS EC2 with Terraform

16. Unit Testing and Functional Testing

17. Security in Node.js Applications

18. Other Books You May Enjoy

Leave a review - let other readers know what you think

Scanning for known vulnerabilities in Node.js packages

Built-in to the npm command-line tool is a command, npm audit, for reporting known vulnerabilities in the dependencies of your application. To support this command is a team of people, and software, who scan packages added to the npm registry. Every third-party package used by your application is a potential security hole.

It's not just that a query against the application might trigger buggy code, whether in your code or third-party packages. In some cases, packages that explicitly cause harm have been added to the npm registry.

Therefore the security audits of packages in the npm registry are extremely helpful to every Node.js developer.

The audit command consults the vulnerability data collected by the auditing team and tells you about vulnerabilities in packages your application uses.

When running npm install, the output might include a message like this:

found 8 vulnerabilities (7 low, 1 moderate)
 run `npm audit fix` to...

The rest of the chapter is locked

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at $19.99/month. Cancel anytime

Authors (1)

David Herron

David Herron is a software engineer living in Silicon Valley who has worked on projects ranging from an X.400 email server to being part of the team that launched the OpenJDK project, to Yahoo's Node.js application-hosting platform, and a solar array performance monitoring service. That took David through several companies until he grew tired of communicating primarily with machines, and developed a longing for human communication. Today, David is an independent writer of books and blog posts covering topics related to technology, programming, electric vehicles, and clean energy technologies.

See other products by David Herron