Audit your project for security vulnerabilities
📦 Node.js-> Command Line
✨ The Prompt Phrase
npm audit
💻 Code Preview
📦 All-in-One Code
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<title>Audit your project for security vulnerabilities - Interactive Tutorial</title>
<link href="https://fonts.googleapis.com/css2?family=Poppins:wght@300;400;600;700;900&family=Fira+Code:wght@400;500;600&display=swap" rel="stylesheet">
<style>
:root {
--bg-primary: #0a0e27;
--bg-secondary: #151932;
--bg-card: #1e2139;
--accent-purple: #a855f7;
--accent-blue: #3b82f6;
--accent-green: #10b981;
--accent-red: #ef4444;
--accent-yellow: #f59e0b;
--accent-pink: #ec4899;
--accent-orange: #fb923c;
--accent-teal: #14b8a6;
--text-primary: #f8fafc;
--text-secondary: #94a3b8;
--gradient-audit: linear-gradient(135deg, #ef4444 0%, #f59e0b 100%);
--gradient-success: linear-gradient(135deg, #10b981 0%, #059669 100%);
--shadow: 0 20px 60px rgba(0, 0, 0, 0.3);
}
* {
margin: 0;
padding: 0;
box-sizing: border-box;
}
body {
font-family: 'Poppins', sans-serif;
background: var(--bg-primary);
color: var(--text-primary);
line-height: 1.6;
overflow-x: hidden;
}
.container {
max-width: 1200px;
margin: 0 auto;
padding: 20px;
}
.progress-container {
position: fixed;
top: 0;
left: 0;
width: 100%;
height: 5px;
background: var(--bg-secondary);
z-index: 1000;
}
.progress-bar {
height: 100%;
background: var(--gradient-audit);
width: 0%;
transition: width 0.3s ease;
}
.hero {
text-align: center;
padding: 100px 20px;
background: var(--gradient-audit);
position: relative;
overflow: hidden;
border-radius: 0 0 50px 50px;
}
.hero::before {
content: '';
position: absolute;
top: 0;
left: 0;
right: 0;
bottom: 0;
background: url('data:image/svg+xml,<svg width="100" height="100" xmlns="http://www.w3.org/2000/svg"><circle cx="50" cy="50" r="2" fill="white" opacity="0.1"/></svg>');
animation: float 20s linear infinite;
}
@keyframes float {
from { transform: translateY(0); }
to { transform: translateY(-100px); }
}
.hero-content {
position: relative;
z-index: 1;
}
.audit-icon {
font-size: 5rem;
margin-bottom: 20px;
animation: auditPulse 2s ease-in-out infinite;
}
@keyframes auditPulse {
0%, 100% { transform: scale(1); }
50% { transform: scale(1.15); }
}
.command-display {
display: inline-block;
background: rgba(0, 0, 0, 0.4);
padding: 25px 40px;
border-radius: 15px;
font-family: 'Fira Code', monospace;
font-size: 1.8rem;
margin: 30px 0;
border: 3px solid rgba(255, 255, 255, 0.3);
animation: pulse 2s ease-in-out infinite;
color: white;
font-weight: 600;
}
@keyframes pulse {
0%, 100% { transform: scale(1); }
50% { transform: scale(1.05); }
}
.hero h1 {
font-size: 3.5rem;
font-weight: 900;
margin-bottom: 20px;
color: white;
text-shadow: 2px 2px 4px rgba(0,0,0,0.3);
}
.hero p {
font-size: 1.4rem;
opacity: 0.95;
color: white;
}
.section {
margin: 60px 0;
}
.section-title {
font-size: 2.5rem;
margin-bottom: 30px;
background: var(--gradient-audit);
-webkit-background-clip: text;
-webkit-text-fill-color: transparent;
background-clip: text;
display: inline-block;
font-weight: 700;
}
.card {
background: var(--bg-card);
border-radius: 20px;
padding: 40px;
margin: 30px 0;
box-shadow: var(--shadow);
border: 1px solid rgba(255, 255, 255, 0.05);
transition: transform 0.3s ease;
}
.card:hover {
transform: translateY(-5px);
}
.code-block {
background: #1e1e1e;
border-radius: 15px;
padding: 25px;
margin: 20px 0;
font-family: 'Fira Code', monospace;
position: relative;
}
.code-header {
display: flex;
justify-content: space-between;
align-items: center;
margin-bottom: 15px;
padding-bottom: 15px;
border-bottom: 1px solid rgba(255, 255, 255, 0.1);
}
.terminal-dots {
display: flex;
gap: 6px;
}
.terminal-dot {
width: 12px;
height: 12px;
border-radius: 50%;
}
.dot-red { background: #ff5f56; }
.dot-yellow { background: #ffbd2e; }
.dot-green { background: #27c93f; }
.copy-btn {
background: var(--accent-purple);
color: white;
border: none;
padding: 8px 16px;
border-radius: 8px;
cursor: pointer;
font-size: 0.9rem;
transition: all 0.3s ease;
}
.copy-btn:hover {
background: var(--accent-blue);
transform: scale(1.05);
}
.copy-btn.copied {
background: var(--accent-green);
}
pre {
margin: 0;
overflow-x: auto;
}
code {
color: #e0e0e0;
font-size: 0.95rem;
line-height: 1.8;
}
.code-comment { color: #6a9955; }
.code-string { color: #ce9178; }
.code-keyword { color: #569cd6; }
.code-property { color: #9cdcfe; }
.steps {
counter-reset: step-counter;
}
.step {
background: var(--bg-secondary);
border-radius: 15px;
padding: 30px;
margin: 20px 0;
position: relative;
padding-left: 100px;
transition: all 0.3s ease;
}
.step:hover {
background: var(--bg-card);
transform: translateX(10px);
}
.step::before {
counter-increment: step-counter;
content: counter(step-counter);
position: absolute;
left: 20px;
top: 50%;
transform: translateY(-50%);
width: 60px;
height: 60px;
background: var(--gradient-audit);
border-radius: 50%;
display: flex;
align-items: center;
justify-content: center;
font-size: 1.8rem;
font-weight: 900;
color: white;
}
.step h3 {
color: var(--accent-orange);
margin-bottom: 10px;
font-size: 1.5rem;
}
.feature-grid {
display: grid;
grid-template-columns: repeat(auto-fit, minmax(250px, 1fr));
gap: 25px;
margin: 30px 0;
}
.feature-card {
background: var(--bg-secondary);
padding: 30px;
border-radius: 15px;
text-align: center;
transition: all 0.3s ease;
border: 2px solid transparent;
}
.feature-card:hover {
border-color: var(--accent-red);
transform: translateY(-10px);
}
.feature-icon {
font-size: 3.5rem;
margin-bottom: 15px;
}
.feature-title {
font-weight: 600;
color: var(--accent-orange);
margin-bottom: 10px;
font-size: 1.3rem;
}
.demo-container {
background: var(--bg-secondary);
border-radius: 20px;
padding: 40px;
margin: 30px 0;
}
.terminal {
background: #1e1e1e;
border-radius: 15px;
padding: 20px;
font-family: 'Fira Code', monospace;
min-height: 300px;
margin: 20px 0;
overflow-y: auto;
max-height: 500px;
}
.terminal-line {
margin: 10px 0;
}
.terminal-prompt {
color: var(--accent-green);
}
.vulnerability {
background: var(--bg-card);
padding: 15px;
border-radius: 10px;
margin: 10px 0;
}
.vuln-critical {
border-left: 4px solid var(--accent-red);
}
.vuln-high {
border-left: 4px solid var(--accent-orange);
}
.vuln-moderate {
border-left: 4px solid var(--accent-yellow);
}
.vuln-low {
border-left: 4px solid var(--accent-blue);
}
.demo-button {
background: var(--gradient-audit);
color: white;
border: none;
padding: 15px 40px;
border-radius: 50px;
font-size: 1.1rem;
font-weight: 600;
cursor: pointer;
transition: all 0.3s ease;
display: inline-flex;
align-items: center;
gap: 10px;
margin: 10px;
}
.demo-button:hover {
transform: scale(1.05);
box-shadow: 0 10px 30px rgba(239, 68, 68, 0.4);
}
.tabs {
display: flex;
gap: 10px;
margin-bottom: 20px;
flex-wrap: wrap;
}
.tab {
padding: 12px 24px;
background: var(--bg-secondary);
border: none;
border-radius: 10px;
color: var(--text-primary);
cursor: pointer;
transition: all 0.3s ease;
font-size: 1rem;
}
.tab:hover {
background: var(--bg-card);
}
.tab.active {
background: var(--gradient-audit);
color: white;
}
.tab-content {
display: none;
}
.tab-content.active {
display: block;
}
.accordion-header {
cursor: pointer;
display: flex;
justify-content: space-between;
align-items: center;
padding: 20px;
background: var(--bg-secondary);
border-radius: 12px;
margin: 15px 0;
transition: all 0.3s ease;
}
.accordion-header:hover {
background: var(--bg-card);
}
.accordion-icon {
transition: transform 0.3s ease;
font-size: 1.2rem;
}
.accordion-icon.active {
transform: rotate(180deg);
}
.accordion-content {
max-height: 0;
overflow: hidden;
transition: max-height 0.3s ease;
}
.accordion-content.active {
max-height: 2000px;
}
.accordion-body {
padding: 20px;
background: var(--bg-secondary);
border-radius: 12px;
margin-top: 5px;
}
.tip, .warning, .success, .info {
padding: 20px;
border-radius: 10px;
margin: 20px 0;
}
.tip {
background: rgba(59, 130, 246, 0.1);
border-left: 4px solid var(--accent-blue);
}
.tip::before { content: '💡 '; font-size: 1.5rem; }
.warning {
background: rgba(239, 68, 68, 0.1);
border-left: 4px solid var(--accent-red);
}
.warning::before { content: '⚠️ '; font-size: 1.5rem; }
.success {
background: rgba(16, 185, 129, 0.1);
border-left: 4px solid var(--accent-green);
}
.success::before { content: '✅ '; font-size: 1.5rem; }
.info {
background: rgba(236, 72, 153, 0.1);
border-left: 4px solid var(--accent-pink);
}
.info::before { content: '🔍 '; font-size: 1.5rem; }
.quiz-container {
background: var(--bg-card);
border-radius: 20px;
padding: 40px;
margin: 30px 0;
}
.quiz-question {
margin: 30px 0;
}
.quiz-question h3 {
color: var(--accent-purple);
margin-bottom: 20px;
font-size: 1.3rem;
}
.quiz-options {
display: flex;
flex-direction: column;
gap: 15px;
}
.quiz-option {
background: var(--bg-secondary);
padding: 20px;
border-radius: 12px;
cursor: pointer;
transition: all 0.3s ease;
border: 2px solid transparent;
}
.quiz-option:hover {
border-color: var(--accent-blue);
transform: translateX(10px);
}
.quiz-option.correct {
border-color: var(--accent-green);
background: rgba(16, 185, 129, 0.1);
}
.quiz-option.incorrect {
border-color: var(--accent-red);
background: rgba(239, 68, 68, 0.1);
}
.quiz-feedback {
margin-top: 15px;
padding: 15px;
border-radius: 10px;
display: none;
}
.quiz-feedback.show {
display: block;
}
.quiz-feedback.correct {
background: rgba(16, 185, 129, 0.1);
border-left: 4px solid var(--accent-green);
}
.quiz-feedback.incorrect {
background: rgba(239, 68, 68, 0.1);
border-left: 4px solid var(--accent-red);
}
.cheat-sheet {
background: var(--gradient-audit);
border-radius: 20px;
padding: 40px;
margin: 30px 0;
color: white;
}
.cheat-grid {
display: grid;
grid-template-columns: repeat(auto-fit, minmax(250px, 1fr));
gap: 20px;
margin-top: 30px;
}
.cheat-item {
background: rgba(255, 255, 255, 0.15);
backdrop-filter: blur(10px);
padding: 20px;
border-radius: 15px;
border: 1px solid rgba(255, 255, 255, 0.2);
}
.cheat-item h4 {
color: white;
margin-bottom: 10px;
font-weight: 600;
}
.cheat-item code {
background: rgba(0, 0, 0, 0.3);
padding: 4px 8px;
border-radius: 5px;
font-size: 0.9rem;
color: white;
}
.highlight {
color: var(--accent-yellow);
font-weight: 600;
}
.footer {
text-align: center;
padding: 40px 20px;
background: var(--bg-secondary);
margin-top: 80px;
border-radius: 20px;
}
.footer p {
color: var(--text-secondary);
margin: 10px 0;
}
.badge {
display: inline-block;
padding: 6px 12px;
background: var(--gradient-audit);
border-radius: 20px;
font-size: 0.85rem;
font-weight: 600;
margin: 5px;
}
.confetti {
position: fixed;
width: 10px;
height: 10px;
background: var(--accent-red);
animation: confetti-fall 3s linear forwards;
z-index: 9999;
}
@keyframes confetti-fall {
to {
transform: translateY(100vh) rotate(360deg);
opacity: 0;
}
}
@media (max-width: 768px) {
.hero h1 { font-size: 2rem; }
.command-display { font-size: 1.2rem; padding: 15px 20px; }
.section-title { font-size: 1.8rem; }
.card { padding: 25px; }
.step { padding-left: 80px; }
.step::before { width: 50px; height: 50px; font-size: 1.5rem; }
}
</style>
</head>
<body>
<div class="progress-container">
<div class="progress-bar" id="progressBar"></div>
</div>
<div class="hero">
<div class="hero-content">
<div class="audit-icon">🛡️</div>
<h1>Master npm audit!</h1>
<div class="command-display">npm audit</div>
<p>Scan for security vulnerabilities! 🔒</p>
</div>
</div>
<div class="container">
<!-- What Is It -->
<section class="section">
<h2 class="section-title">🤔 What Is npm audit?</h2>
<div class="card">
<p style="font-size: 1.2rem; margin-bottom: 20px;">
This command <span class="highlight">scans</span> your project's dependencies for known <strong>security vulnerabilities</strong>! 🛡️
</p>
<p style="margin-bottom: 20px;">
Think of it like a security guard checking everyone entering your building! 🚨 npm audit examines all your installed packages and their dependencies, comparing them against a database of known security issues to keep your project safe!
</p>
<div class="info">
<strong>Breaking It Down:</strong>
<ul style="margin-left: 30px; margin-top: 10px; line-height: 2;">
<li><code>npm audit</code> - Scans for vulnerabilities</li>
<li>Checks against npm's security advisory database</li>
<li>Reports severity levels: Critical, High, Moderate, Low</li>
<li>Suggests fixes when available</li>
</ul>
</div>
<div style="margin-top: 30px;">
<h3 style="color: var(--accent-pink); margin-bottom: 15px;">Why is security important? 🔒</h3>
<p>Vulnerabilities can lead to data breaches, malicious code execution, and compromised systems. Regular audits help catch these issues before they become problems!</p>
</div>
</div>
</section>
<!-- Why Use It -->
<section class="section">
<h2 class="section-title">✨ Why Use npm audit?</h2>
<div class="card">
<div class="feature-grid">
<div class="feature-card">
<div class="feature-icon">🔒</div>
<div class="feature-title">Security First</div>
<p style="color: var(--text-secondary);">Protect your application!</p>
</div>
<div class="feature-card">
<div class="feature-icon">⚠️</div>
<div class="feature-title">Early Detection</div>
<p style="color: var(--text-secondary);">Find issues before production!</p>
</div>
<div class="feature-card">
<div class="feature-icon">🔧</div>
<div class="feature-title">Auto Fixes</div>
<p style="color: var(--text-secondary);">Automated vulnerability fixes!</p>
</div>
<div class="feature-card">
<div class="feature-icon">📊</div>
<div class="feature-title">Detailed Reports</div>
<p style="color: var(--text-secondary);">Know exactly what's wrong!</p>
</div>
<div class="feature-card">
<div class="feature-icon">✅</div>
<div class="feature-title">Compliance</div>
<p style="color: var(--text-secondary);">Meet security standards!</p>
</div>
<div class="feature-card">
<div class="feature-icon">🚀</div>
<div class="feature-title">CI/CD Ready</div>
<p style="color: var(--text-secondary);">Integrate into pipelines!</p>
</div>
</div>
</div>
</section>
<!-- How It Works -->
<section class="section">
<h2 class="section-title">⚙️ How Does It Work?</h2>
<div class="card">
<div class="steps">
<div class="step">
<h3>Step 1: Reads package-lock.json</h3>
<p>npm examines your dependency tree to see what's installed.</p>
</div>
<div class="step">
<h3>Step 2: Queries Security Database</h3>
<p>Sends package info to npm's security advisory database.</p>
</div>
<div class="step">
<h3>Step 3: Identifies Vulnerabilities</h3>
<p>Matches your packages against known security issues.</p>
</div>
<div class="step">
<h3>Step 4: Categorizes by Severity</h3>
<p>Ranks issues as Critical, High, Moderate, or Low.</p>
</div>
<div class="step">
<h3>Step 5: Generates Report</h3>
<p>Shows detailed findings and suggests fixes! 🎉</p>
</div>
</div>
</div>
</section>
<!-- Live Demo -->
<section class="section">
<h2 class="section-title">🎮 Interactive Demo</h2>
<div class="demo-container">
<h3 style="margin-bottom: 20px; font-size: 1.5rem;">See npm audit in Action! 🚀</h3>
<button class="demo-button" onclick="simulateAudit()">
<span>🛡️</span>
<span>Run Security Audit</span>
</button>
<button class="demo-button" onclick="simulateAuditFix()">
<span>🔧</span>
<span>Run Audit Fix</span>
</button>
<div class="terminal" id="terminal">
<div class="terminal-line">
<span class="terminal-prompt">$</span>
<span style="color: var(--text-secondary);"> Ready to audit...</span>
</div>
</div>
</div>
</section>
<!-- Code Breakdown -->
<section class="section">
<h2 class="section-title">💻 Audit Commands</h2>
<div class="card">
<div class="tabs">
<button class="tab active" onclick="switchTab('basic')">Basic Audit</button>
<button class="tab" onclick="switchTab('fix')">Auto Fix</button>
<button class="tab" onclick="switchTab('json')">JSON Output</button>
</div>
<div id="basic" class="tab-content active">
<h3 style="color: var(--accent-pink); margin-bottom: 15px;">Basic Security Audit</h3>
<div class="code-block">
<div class="code-header">
<div class="terminal-dots">
<div class="terminal-dot dot-red"></div>
<div class="terminal-dot dot-yellow"></div>
<div class="terminal-dot dot-green"></div>
</div>
<button class="copy-btn" onclick="copyCode('basic-code')">📋 Copy</button>
</div>
<pre><code id="basic-code"><span class="code-comment"># Run security audit</span>
npm audit
<span class="code-comment"># Shows vulnerabilities with severity levels</span>
<span class="code-comment"># Critical, High, Moderate, Low</span>
<span class="code-comment"># Audit production dependencies only</span>
npm audit --production</code></pre>
</div>
<div class="success" style="margin-top: 15px;">
<strong>Result:</strong> Shows a detailed report of all vulnerabilities found in your dependencies!
</div>
</div>
<div id="fix" class="tab-content">
<h3 style="color: var(--accent-pink); margin-bottom: 15px;">Automatically Fix Vulnerabilities</h3>
<div class="code-block">
<div class="code-header">
<div class="terminal-dots">
<div class="terminal-dot dot-red"></div>
<div class="terminal-dot dot-yellow"></div>
<div class="terminal-dot dot-green"></div>
</div>
<button class="copy-btn" onclick="copyCode('fix-code')">📋 Copy</button>
</div>
<pre><code id="fix-code"><span class="code-comment"># Automatically fix vulnerabilities</span>
npm audit fix
<span class="code-comment"># Fix only if it doesn't break semver</span>
npm audit fix --only=prod
<span class="code-comment"># Force fix (may introduce breaking changes)</span>
npm audit fix --force
<span class="code-comment"># Dry run - see what would be fixed</span>
npm audit fix --dry-run</code></pre>
</div>
<div class="warning" style="margin-top: 15px;">
<strong>Caution:</strong> <code>--force</code> may introduce breaking changes. Test thoroughly after using!
</div>
</div>
<div id="json" class="tab-content">
<h3 style="color: var(--accent-pink); margin-bottom: 15px;">JSON Format Output</h3>
<div class="code-block">
<div class="code-header">
<div class="terminal-dots">
<div class="terminal-dot dot-red"></div>
<div class="terminal-dot dot-yellow"></div>
<div class="terminal-dot dot-green"></div>
</div>
<button class="copy-btn" onclick="copyCode('json-code')">📋 Copy</button>
</div>
<pre><code id="json-code"><span class="code-comment"># Get audit results in JSON format</span>
npm audit --json
<span class="code-comment"># Useful for CI/CD and automation</span>
npm audit --json > audit-report.json
<span class="code-comment"># Parse with jq</span>
npm audit --json | jq '.vulnerabilities'</code></pre>
</div>
<div class="tip" style="margin-top: 15px;">
<strong>Pro Tip:</strong> Use JSON output in CI/CD pipelines to fail builds on critical vulnerabilities!
</div>
</div>
</div>
</section>
<!-- Common Mistakes -->
<section class="section">
<h2 class="section-title">❌ Common Mistakes</h2>
<div class="card">
<div class="accordion">
<div class="accordion-item">
<div class="accordion-header" onclick="toggleAccordion(this)">
<span><strong>1. Ignoring Audit Warnings</strong></span>
<span class="accordion-icon">▼</span>
</div>
<div class="accordion-content">
<div class="accordion-body">
<div class="warning">
<strong>Problem:</strong> Deploying to production without addressing vulnerabilities!
</div>
<div class="success" style="margin-top: 15px;">
<strong>Solution:</strong> Always run <code>npm audit</code> before deploying and fix critical/high issues!
</div>
</div>
</div>
</div>
<div class="accordion-item">
<div class="accordion-header" onclick="toggleAccordion(this)">
<span><strong>2. Using --force Without Testing</strong></span>
<span class="accordion-icon">▼</span>
</div>
<div class="accordion-content">
<div class="accordion-body">
<div class="warning">
<strong>Problem:</strong> <code>npm audit fix --force</code> can introduce breaking changes!
</div>
<div class="success" style="margin-top: 15px;">
<strong>Solution:</strong> Try <code>npm audit fix</code> first. Use <code>--force</code> only if needed, then test thoroughly!
</div>
</div>
</div>
</div>
<div class="accordion-item">
<div class="accordion-header" onclick="toggleAccordion(this)">
<span><strong>3. Not Running Audits Regularly</strong></span>
<span class="accordion-icon">▼</span>
</div>
<div class="accordion-content">
<div class="accordion-body">
<div class="warning">
<strong>Problem:</strong> New vulnerabilities are discovered daily!
</div>
<div class="success" style="margin-top: 15px;">
<strong>Solution:</strong> Add <code>npm audit</code> to your CI/CD pipeline and run it regularly!
</div>
</div>
</div>
</div>
</div>
</div>
</section>
<!-- Pro Tips -->
<section class="section">
<h2 class="section-title">🚀 Pro Tips</h2>
<div class="card">
<div class="tip">
<strong>Automate audits</strong> - Add <code>npm audit</code> to your CI/CD pipeline to catch issues early!
</div>
<div class="tip">
<strong>Set audit level</strong> - Use <code>npm audit --audit-level=high</code> to only fail on high/critical issues!
</div>
<div class="tip">
<strong>Check before installing</strong> - Run audit after adding new packages to catch vulnerabilities immediately!
</div>
<div class="tip">
<strong>Use dry-run</strong> - Test fixes with <code>npm audit fix --dry-run</code> before applying them!
</div>
<div class="tip">
<strong>Monitor regularly</strong> - Schedule weekly audits even if you're not actively developing!
</div>
<div class="tip">
<strong>Document exceptions</strong> - If you can't fix a vulnerability, document why and track it!
</div>
</div>
</section>
<!-- Quiz -->
<section class="section">
<h2 class="section-title">🎯 Knowledge Check Quiz</h2>
<div class="quiz-container">
<p style="margin-bottom: 30px; font-size: 1.1rem;">Test your understanding! 🧠</p>
<div class="quiz-question">
<h3>Question 1: What does npm audit do?</h3>
<div class="quiz-options">
<div class="quiz-option" onclick="checkAnswer(this, false, 1)">A) Checks your code quality</div>
<div class="quiz-option" onclick="checkAnswer(this, true, 1)">B) Scans dependencies for security vulnerabilities</div>
<div class="quiz-option" onclick="checkAnswer(this, false, 1)">C) Optimizes your package.json</div>
</div>
<div class="quiz-feedback" id="feedback1"></div>
</div>
<div class="quiz-question">
<h3>Question 2: What does npm audit fix do?</h3>
<div class="quiz-options">
<div class="quiz-option" onclick="checkAnswer(this, false, 2)">A) Deletes vulnerable packages</div>
<div class="quiz-option" onclick="checkAnswer(this, true, 2)">B) Automatically updates packages to fix vulnerabilities</div>
<div class="quiz-option" onclick="checkAnswer(this, false, 2)">C) Removes all dependencies</div>
</div>
<div class="quiz-feedback" id="feedback2"></div>
</div>
<div class="quiz-question">
<h3>Question 3: When should you run npm audit?</h3>
<div class="quiz-options">
<div class="quiz-option" onclick="checkAnswer(this, false, 3)">A) Only when you have problems</div>
<div class="quiz-option" onclick="checkAnswer(this, true, 3)">B) Regularly and in CI/CD pipelines</div>
<div class="quiz-option" onclick="checkAnswer(this, false, 3)">C) Never, it's not important</div>
</div>
<div class="quiz-feedback" id="feedback3"></div>
</div>
<div id="quizScore" style="margin-top: 30px; padding: 20px; background: var(--bg-secondary); border-radius: 12px; display: none;">
<h3 style="color: var(--accent-green); font-size: 1.5rem;">🎉 Quiz Complete!</h3>
<p id="scoreText" style="font-size: 1.2rem; margin-top: 10px;"></p>
</div>
</div>
</section>
<!-- Summary Card -->
<section class="section">
<h2 class="section-title">📚 Quick Reference</h2>
<div class="cheat-sheet">
<h3 style="margin-bottom: 20px; font-size: 2rem;">npm audit Cheat Sheet! 🔖</h3>
<div class="cheat-grid">
<div class="cheat-item">
<h4>🛡️ Basic Audit</h4>
<p><code>npm audit</code></p>
<p style="font-size: 0.85rem; margin-top: 5px;">Scan for vulnerabilities</p>
</div>
<div class="cheat-item">
<h4>🔧 Auto Fix</h4>
<p><code>npm audit fix</code></p>
<p style="font-size: 0.85rem; margin-top: 5px;">Fix vulnerabilities</p>
</div>
<div class="cheat-item">
<h4>⚠️ Force Fix</h4>
<p><code>npm audit fix --force</code></p>
<p style="font-size: 0.85rem; margin-top: 5px;">Force updates</p>
</div>
<div class="cheat-item">
<h4>🔍 Dry Run</h4>
<p><code>npm audit fix --dry-run</code></p>
<p style="font-size: 0.85rem; margin-top: 5px;">Preview fixes</p>
</div>
<div class="cheat-item">
<h4>📄 JSON Output</h4>
<p><code>npm audit --json</code></p>
<p style="font-size: 0.85rem; margin-top: 5px;">Machine-readable</p>
</div>
<div class="cheat-item">
<h4>🎯 Audit Level</h4>
<p><code>npm audit --audit-level=high</code></p>
<p style="font-size: 0.85rem; margin-top: 5px;">Set threshold</p>
</div>
<div class="cheat-item">
<h4>🏭 Production Only</h4>
<p><code>npm audit --production</code></p>
<p style="font-size: 0.85rem; margin-top: 5px;">Skip dev deps</p>
</div>
<div class="cheat-item">
<h4>📊 Severity Levels</h4>
<p>Critical, High, Moderate, Low</p>
<p style="font-size: 0.85rem; margin-top: 5px;">Risk categories</p>
</div>
</div>
</div>
</section>
<!-- Footer -->
<div class="footer">
<h2 style="font-size: 2rem; margin-bottom: 20px; color: var(--accent-pink);">🎉 Congratulations!</h2>
<p style="font-size: 1.2rem; margin-bottom: 20px;">You now understand <strong>npm audit</strong>! 🚀</p>
<div style="margin: 30px 0;">
<span class="badge">🛡️ Security Master</span>
<span class="badge">🔒 Vulnerability Hunter</span>
<span class="badge">✅ Audit Expert</span>
</div>
<p style="color: var(--text-secondary); margin-top: 30px;">Generated by <strong>AI Prompt Dictionary</strong> 🤖</p>
<p style="color: var(--text-secondary); font-size: 0.9rem;">Made with ❤️ for developers learning npm</p>
</div>
</div>
<script>
// Progress bar
window.addEventListener('scroll', () => {
const winScroll = document.body.scrollTop || document.documentElement.scrollTop;
const height = document.documentElement.scrollHeight - document.documentElement.clientHeight;
const scrolled = (winScroll / height) * 100;
document.getElementById('progressBar').style.width = scrolled + '%';
});
// Copy to clipboard
function copyCode(codeId) {
const code = document.getElementById(codeId).innerText;
navigator.clipboard.writeText(code).then(() => {
event.target.textContent = '✅ Copied!';
event.target.classList.add('copied');
setTimeout(() => {
event.target.textContent = '📋 Copy';
event.target.classList.remove('copied');
}, 2000);
});
}
// Tab switching
function switchTab(tabName) {
document.querySelectorAll('.tab-content').forEach(c => c.classList.remove('active'));
document.querySelectorAll('.tab').forEach(t => t.classList.remove('active'));
document.getElementById(tabName).classList.add('active');
event.target.classList.add('active');
}
// Accordion toggle
function toggleAccordion(header) {
const content = header.nextElementSibling;
const icon = header.querySelector('.accordion-icon');
content.classList.toggle('active');
icon.classList.toggle('active');
}
// Simulate audit
function simulateAudit() {
const terminal = document.getElementById('terminal');
terminal.innerHTML = '<div class="terminal-line"><span class="terminal-prompt">$</span> npm audit</div>';
setTimeout(() => {
terminal.innerHTML += '<div class="terminal-line" style="color: var(--text-secondary); margin-top: 10px;">Auditing dependencies...</div>';
}, 500);
setTimeout(() => {
terminal.innerHTML += `
<div class="vulnerability vuln-critical">
<div style="color: var(--accent-red); font-weight: 600;">⚠️ Critical Severity</div>
<div style="color: var(--text-secondary); margin: 5px 0;">Prototype Pollution in lodash</div>
<div style="font-size: 0.9rem; color: var(--text-secondary);">Package: lodash | Dependency of: express</div>
</div>
<div class="vulnerability vuln-high">
<div style="color: var(--accent-orange); font-weight: 600;">⚠️ High Severity</div>
<div style="color: var(--text-secondary); margin: 5px 0;">Regular Expression Denial of Service</div>
<div style="font-size: 0.9rem; color: var(--text-secondary);">Package: minimatch | Dependency of: webpack</div>
</div>
<div class="vulnerability vuln-moderate">
<div style="color: var(--accent-yellow); font-weight: 600;">⚠️ Moderate Severity</div>
<div style="color: var(--text-secondary); margin: 5px 0;">Path Traversal</div>
<div style="font-size: 0.9rem; color: var(--text-secondary);">Package: send | Dependency of: express</div>
</div>
`;
terminal.innerHTML += '<div class="terminal-line" style="color: var(--accent-red); margin-top: 20px; font-weight: 600;">found 3 vulnerabilities (1 critical, 1 high, 1 moderate)</div>';
terminal.innerHTML += '<div class="terminal-line" style="color: var(--accent-green); margin-top: 10px;">run <code>npm audit fix</code> to fix them</div>';
}, 1500);
}
// Simulate audit fix
function simulateAuditFix() {
const terminal = document.getElementById('terminal');
terminal.innerHTML = '<div class="terminal-line"><span class="terminal-prompt">$</span> npm audit fix</div>';
setTimeout(() => {
terminal.innerHTML += '<div class="terminal-line" style="color: var(--text-secondary); margin-top: 10px;">Fixing vulnerabilities...</div>';
}, 500);
setTimeout(() => {
terminal.innerHTML += '<div class="terminal-line" style="color: var(--accent-blue); margin-top: 10px;">+ lodash@4.17.21</div>';
terminal.innerHTML += '<div class="terminal-line" style="color: var(--accent-blue);">+ minimatch@3.1.2</div>';
terminal.innerHTML += '<div class="terminal-line" style="color: var(--text-secondary); margin-top: 10px;">updated 2 packages in 3.456s</div>';
}, 1500);
setTimeout(() => {
terminal.innerHTML += '<div class="terminal-line" style="color: var(--accent-green); margin-top: 15px; font-weight: 600;">✅ fixed 2 of 3 vulnerabilities</div>';
terminal.innerHTML += '<div class="terminal-line" style="color: var(--accent-yellow); margin-top: 10px;">⚠️ 1 vulnerability requires manual review</div>';
createConfetti();
}, 2500);
}
// Quiz system
let quizScore = 0;
let questionsAnswered = 0;
function checkAnswer(element, isCorrect, questionNum) {
const options = element.parentElement.querySelectorAll('.quiz-option');
options.forEach(opt => opt.style.pointerEvents = 'none');
const feedback = document.getElementById('feedback' + questionNum);
if (isCorrect) {
element.classList.add('correct');
feedback.className = 'quiz-feedback correct show';
feedback.innerHTML = '<strong>🎉 Correct!</strong> Great job!';
quizScore++;
createConfetti();
} else {
element.classList.add('incorrect');
feedback.className = 'quiz-feedback incorrect show';
feedback.innerHTML = '<strong>❌ Not quite!</strong> Review the material and try again!';
}
questionsAnswered++;
if (questionsAnswered === 3) {
setTimeout(() => {
document.getElementById('quizScore').style.display = 'block';
document.getElementById('scoreText').textContent = `You scored ${quizScore}/3! ${quizScore === 3 ? '🏆 Perfect!' : quizScore === 2 ? '👍 Good job!' : '💪 Keep learning!'}`;
}, 1000);
}
}
// Confetti animation
function createConfetti() {
const colors = ['#ef4444', '#f59e0b', '#10b981', '#3b82f6', '#a855f7'];
for (let i = 0; i < 50; i++) {
const confetti = document.createElement('div');
confetti.className = 'confetti';
confetti.style.left = Math.random() * window.innerWidth + 'px';
confetti.style.background = colors[Math.floor(Math.random() * colors.length)];
confetti.style.animationDuration = (2 + Math.random() * 2) + 's';
document.body.appendChild(confetti);
setTimeout(() => confetti.remove(), 4000);
}
}
</script>
</body>
</html>
Live Preview