diff --git a/exposures/configs/package-json.yaml b/exposures/configs/package-json.yaml
index c397c41544..88d6bcf625 100644
--- a/exposures/configs/package-json.yaml
+++ b/exposures/configs/package-json.yaml
@@ -2,16 +2,18 @@ id: package-json
 
 info:
   name: npm package.json disclosure
-  author: geeknik,afaq
+  author: geeknik,afaq,noraj
   severity: info
-  description: All npm packages contain a file, usually in the project root, called package.json - this file holds various metadata relevant to the project.
+  description: All NodeJS packages contain a file, usually in the project root, called package.json - this file holds various metadata relevant to the project generated by package managers such as npm or yarn.
+  reference:
+    - https://docs.npmjs.com/cli/v9/configuring-npm/package-json
+    - https://classic.yarnpkg.com/lang/en/docs/package-json/
   tags: config,exposure
 
 requests:
   - method: GET
     path:
       - "{{BaseURL}}/package.json"
-      - "{{BaseURL}}/package-lock.json"
 
     matchers-condition: and
     matchers:
@@ -28,4 +30,4 @@ requests:
 
       - type: status
         status:
-          - 200
\ No newline at end of file
+          - 200