npm.io
1.0.1 • Published 3d agoCLI

@insom/insom

Licence
UNLICENSED
Version
1.0.1
Deps
0
Size
7 kB
Vulns
0
Weekly
0

insom

Launcher for Insomnia SAST — a static application security testing engine. See insom.ai.

Benchmark: 85.7% class recall on 31 vulnerable repos vs Semgrep 58.9%, SonarQube 26.8%, Bandit 16.1% — full head-to-head →

npm install -g insom
insom scan ./my-project

On first use, insom downloads the native engine build that matches your OS and CPU (Windows/Linux/macOS, x64 & arm64) from insom.ai, verifies it with SHA-256, caches it under ~/.insom/engine, and checks for updates once a day. All arguments are passed straight through to the engine, so this mirrors the pip install sast launcher for the Node ecosystem.

License

UNLICENSED — proprietary. Insomnia / insom.ai.

Keywords