add the ability to enable/disable the NSP analyzer and updated the site documentation

src/site/markdown/analyzers/index.md

@@ -9,6 +9,7 @@ to extract identification information from the files analyzed.
 | [Assembly](./assembly-analyzer.html) | .NET Assemblies (\*.exe, \*.dll) | Uses [GrokAssembly.exe](https://github.com/colezlaw/GrokAssembly), which requires .NET Framework or Mono runtime to be installed. |
 | [CMake](./cmake.html) | CMake project files (CMakeLists.txt) and scripts (\*.cmake) | Regex scan for project initialization and version setting commands. |
 | [Jar](./jar-analyzer.html) | Java archive files (\*.jar); Web application archive (\*.war) | Examines archive manifest metadata, and Maven Project Object Model files (pom.xml). |
+| [NSP](./nsp-analyzer.html) | [Node Security Project](https://nodesecurity.io) is used to analyze Node.js' `package.json` files for known vulnerable packages.|
 | [Nuspec](./nuspec-analyzer.html) | Nuget package specification file (\*.nuspec) | Uses XPath to parse specification XML. |
 | [OpenSSL](./openssl.html) | OpenSSL Version Source Header File (opensslv.h) | Regex parse of the OPENSSL_VERSION_NUMBER macro definition. |
 

src/site/markdown/analyzers/nsp-analyzer

@@ -0,0 +1,16 @@
+Node.js Analyzer
+================
+
+OWASP dependency-check includes a [Node Security Project (NSP)](https://nodesecurity.io)
+analyzer that will scan `package.json` files. The analyzer will filter the given
+package.json down to a specific white-list of allowed entries and submit the data
+to the NSP for analysis.
+
+This analyzer is enabled by default and requires that the machine performing the
+analysis can reach out to the Internet.
+
+White-list of entries sent to NSP include: name, version, engine, dependencies, 
+devDependencies, optionalDependencies, peerDependencies, bundleDependencies, and
+bundledDependencies
+
+Files Types Scanned: [package.json](https://docs.npmjs.com/files/package.json)

src/site/markdown/dependency-check-gradle/configuration.md

@@ -110,6 +110,7 @@ cmakeEnabled          | Sets whether or not the [experimental](../analyzers/inde
 autoconfEnabled       | Sets whether or not the [experimental](../analyzers/index.html) autoconf Analyzer should be used.                 | true
 composerEnabled       | Sets whether or not the [experimental](../analyzers/index.html) PHP Composer Lock File Analyzer should be used.   | true
 nodeEnabled           | Sets whether or not the [experimental](../analyzers/index.html) Node.js Analyzer should be used.                  | true
+nspEnabled            | Sets whether the NSP Analyzer should be used.                                                                     | true
 cocoapodsEnabled      | Sets whether or not the [experimental](../analyzers/index.html) Cocoapods Analyzer should be used.                | true
 swiftEnabled          | Sets whether or not the [experimental](../analyzers/index.html) Swift Package Manager Analyzer should be used.    | true
 bundleAuditEnabled    | Sets whether or not the [experimental](../analyzers/index.html) Ruby Bundle Audit Analyzer should be used.        | true