A9 - Wrong url, to be removed

Question

A9 - Wrong url, to be removed

GeniaT opened this issue 4 years ago · 1 comments

GeniaT commented 4 years ago

Hello,

The 6th link bithound should be removed from the page as it's not a Nodejs service anymore but a casino website.

Cheers,
Genia.

Answer 1 · 2021-03-17T15:09:06.000Z

Good catch! Based on archive.org it looks like bithound shut down in 2018.

Looking through the rest of that list, nodesecurity.io (link 1) is a holding site. It look like it was run by a company that then got acquired by NPM. Their advisories were integrated into npmjs.com, so I think https://www.npmjs.com/advisories is an appropriate replacement link.

The same company also seemed to be involved with the requiresafe module. That's still on NPM, but has been deprecated and not been updated for five years. It continued for a while as the nsp module, before being shut down in 2018. That tool's functionality was built into npm v6: https://medium.com/npm-inc/announcing-npm-6-5d0b1799a905. We could link to the NPM audit docs as a replacement.

The "npm outdated" link is broken too; it loads the tutorial page again in a new tab. That could be updated with links to https://docs.npmjs.com/cli/v7/commands/npm-outdated and https://classic.yarnpkg.com/en/docs/cli/outdated.

It might also be a good idea to add a link to dependabot too, eg: https://docs.github.com/en/github/managing-security-vulnerabilities/configuring-dependabot-security-updates