LogoHackDB
icon of Retire.js

Retire.js

Retire.js: Scans web/Node.js apps for vulnerable JS libraries & generates SBOMs, aiding in identifying & mitigating security risks.

Introduction

Retire.js helps detect JavaScript library versions with known vulnerabilities in web applications and Node.js projects. It can be used as a command-line scanner, a Grunt plugin, a Gulp task, or integrated into Burp Suite and OWASP ZAP for penetration testing. Key features include:

  • Vulnerability Detection: Identifies the use of JavaScript libraries with known vulnerabilities.
  • SBOM Generation: Generates Software Bill of Materials (SBOMs) in CycloneDX format.
  • Integration: Works as a command-line tool, Grunt plugin, Gulp task, and integrates with Burp and OWASP ZAP.
  • Customizable: Allows users to define ignore patterns and customize output formats.

Information

Newsletter

Join the Community

Subscribe to our newsletter for the latest news and updates