Node.js CLI Security & Permissions

Node.js CLI•Permalink

Node.js CLI security cheat sheets for the permission model, network and filesystem restrictions, eval hardening, and TLS/crypto settings.

View

Standard Detailed Compact

Export

Copy the compact sheet, download it, or print it.

Download

`D` dense toggle · `C` copy all

Security and Permissions

Run Node with explicit access controls and safer defaults.

Enable permission model and allow file reads

Run with restricted permissions and controlled file access.

bashANYnodepermissionssecurity

↗#

bash

node --permission --allow-fs-read=./config app.js

Notes

Useful for defense-in-depth in local, CI, and service environments.

Allow writes to a path

Permit writing only to a chosen directory.

bashANYnodepermissionsfilesystem

↗#

bash

node --permission --allow-fs-write=./tmp app.js

Notes

Restricts write access under the permission model.

Allow outbound network access

Permit network access under the permission model.

bashANYnodepermissionsnetwork

↗#

bash

node --permission --allow-net=api.example.com app.js

Notes

Recent Node versions expose network permissions as part of the permission model.

Allow child processes

Permit spawning subprocesses.

bashANYnodepermissionschild-process

↗#

bash

node --permission --allow-child-process app.js

Notes

Needed when the program uses child_process under permission restrictions.

Disallow eval and string code generation

Block code generation from strings.

bashANYnodesecurityeval

↗#

bash

node --disallow-code-generation-from-strings app.js

Notes

Useful in security-sensitive environments to reduce reliance on eval-like behavior.

Enable FIPS mode

Start Node with FIPS-compliant crypto if supported.

bashANYnodefipscrypto

↗#

bash

node --enable-fips app.js

Notes

Requires a compatible Node and OpenSSL build.

More in Node.js CLI

Node.js CLI Recipes

Node.js CLI recipes for watch mode, built-in tests, REPL usage, shebang scripts, and practical automation patterns.

Node.js CLI Performance & Profiling

Node.js CLI performance cheat sheets for memory tuning, CPU profiling, heap analysis, coverage, and source-map-aware debugging.

Node.js CLI Environment & Config

Node.js CLI environment and config cheat sheets for NODE_OPTIONS, runtime environment variables, proxy settings, CA certificates, and launch patterns.

Node.js CLI

Node.js CLI cheat sheets for runtime flags, debugging, watch mode, test runner, environment variables, and production execution patterns.

Recommended next

No recommendations yet.

Browse all sheets →