EN
ENNA

Retire.js

Apache-2.0

Vulnerability Scanning · JavaScript

Retire.js is a JavaScript library scanner designed to detect known vulnerabilities in web applications. It identifies outdated and insecure dependencies by checking against a comprehensive database of CVEs and other vulnerability sources. The tool is essential for developers and security professionals seeking to ensure their applications are free from exploitable third-party components. Retire.js is widely used for dependency scanning in the development lifecycle.

4.1kstars
435forks
2issues
Updated 1d ago
View on GitHubOfficial Website

Tags

javascriptdependency-scanningcveweb-securitybuild-toolchrome-extensionfirefox-extensiongrunt-pluginsinsecure-librariessbomsbom-generatorsbom-toolscannersecuritysoftware-composition-analysisvulnerabilitiesvulnerable-libraries

Details

Category
Vulnerability Scanning
Language
JavaScript
License
Apache-2.0
Platforms
🐧linux🍎macos🪟windows

Links

GitHub Repository

github.com/RetireJS/retire.js

Official Website

retirejs.github.io/retire.js

Releases

github.com/RetireJS/retire.js/releases

Issues

github.com/RetireJS/retire.js/issues

Sponsored

Your ad here

Reach security professionals and developers — ads@en-na.com

More in Vulnerability Scanning

Nuclei

Go

Fast vulnerability scanner driven by YAML templates. Thousands of community-contributed detection templates.

template-basedcvemisconfig

sqlmap

Python

Automatic SQL injection and database takeover tool. Detects and exploits SQL injection flaws.

sql-injectiondatabaseautomated

WPScan

Ruby

WordPress security scanner. Enumerates plugins, themes, users, and checks for known vulnerabilities.

wordpressplugin-enumcve

OpenVAS

C

Full-featured vulnerability scanner. 50,000+ NVTs, credentialed scanning, compliance checks.

enterprisenvtcompliance

XSStrike

Python

Advanced XSS detection suite. Fuzzing engine, context analysis, and WAF detection/bypass capabilities.

xsswaf-bypassfuzzing

Commix

Python

Automated OS command injection exploitation tool. Tests web apps for command injection vulnerabilities.

command-injectionautomatedweb-app