NPM Dependency Scopes Supported by Code Insight
The following list shows runtime and non-runtime NPM-specific scopes that Code Insight currently supports for dependencies. The NPM scope for a given dependency is converted to the broader Runtime or Non-Runtime scope in the scan results.
|
Runtime Scopes |
Non-Runtime Scopes |
|
dependencies bundled optional peer dependencies |
devDependencies |
Additional Note About NPM Dependency Scopes
If only the package.json exists in the NPM ecosystem, transitive dependencies with a devDependencies scope are not reported during transitive scans (that is, scans whose profile is configured with the All Transitive Dependencies option). This behavior is in conformity with the NPM ecosystem behavior.