npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

yarn-audit-report

v1.0.0

Published

Generate a HTML/PDF report for Yarn Audit

Downloads

72

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

jaspervercammenjaspervercammen

Keywords

yarnauditreport

Readme

yarn-audit-report

Generate HTML/PDF reports for Yarn 4 Audit

This tool generates beautiful HTML or PDF reports from Yarn 4 audit results, helping you visualize and analyze security vulnerabilities in your project dependencies.

Features

  • 🔍 Yarn 4 Support: Built specifically for Yarn 4 audit format
  • 📄 HTML & PDF Output: Generate both HTML and PDF reports
  • 🎨 Customizable Themes: Choose from 24+ Bootstrap themes
  • 📊 Severity Overview: Visual breakdown of vulnerability counts by severity
  • 🔗 Dependency Paths: Expanded view of how vulnerabilities are introduced
  • 📋 Detailed Reports: Complete vulnerability information including CVE details
  • ⚙️ Custom Templates: Use your own EJS templates for full customization

Install

yarn add -D yarn-audit-report
# or globally
yarn global add yarn-audit-report

Usage

⚠️ Important: This tool only supports Yarn 4 audit format. For legacy Yarn versions, please use an older version of this package.

Generate HTML Report

yarn npm audit --json | yarn yarn-audit-report

Generate PDF Report

yarn npm audit --json | yarn yarn-audit-report --pdf

By default, reports are saved as yarn-audit-report.html (or .pdf for PDF output). Vulnerabilities are grouped by module name, version, and advisory details for accurate counting.

Specify Output File

yarn npm audit --json | yarn yarn-audit-report --output my-security-report.html
yarn npm audit --json | yarn yarn-audit-report --pdf --output my-security-report.pdf

Use Custom Templates

You can fully customize the generated report using your own EJS template:

yarn npm audit --json | yarn yarn-audit-report --template ./my-awesome-template.ejs

Choose a Theme

Select from 24+ available Bootswatch themes:

yarn npm audit --json | yarn yarn-audit-report --theme darkly
# Available themes: cerulean, cosmo, cyborg, darkly, flatly, journal, litera,
# lumen, lux, materia, minty, morph, pulse, quartz, sandstone, simplex,
# sketchy, slate, solar, spacelab, superhero, united, vapor, yeti, zephyr

Exit with Error Code

Make the command exit with code 1 when vulnerabilities are found (useful for CI/CD):

yarn npm audit --json | yarn yarn-audit-report --fatal-exit-code

Command Line Options

| Option | Description | Default | | ------------------- | ----------------------------------------- | ------------------------------------ | | --output | Output file path | yarn-audit-report.html (or .pdf) | | --template | Path to custom EJS template | Built-in template | | --theme | Bootswatch theme name | materia | | --pdf | Generate PDF instead of HTML | false | | --fatal-exit-code | Exit with code 1 if vulnerabilities found | false |

Requirements

  • Node.js: >= 16
  • Yarn: 4.x only
  • For PDF generation: Chromium/Chrome (automatically downloaded by Puppeteer)

Migration from yarn-audit-html

This package was renamed from yarn-audit-html and refactored to support only Yarn 4. Key changes:

  • ✅ Yarn 4 JSONL format support
  • ✅ PDF generation capability
  • ✅ Improved UI with severity overview
  • ✅ Expanded dependency path display
  • ❌ Removed Yarn 1/2/3 support (use older versions for legacy support)

Contributing

Contributions are welcome! Please feel free to submit a Pull Request.

License

MIT

Inspired by npm-audit-html package.