Scanning website for vulnerable js libraries.
What is retire.js?
retire.js is a Firefox add-on designed to help developers scan web applications for outdated JavaScript libraries with known vulnerabilities. The tool provides updates on various JS libraries, including jquery-ui and next.js, as well as Angular vulnerabilities. New releases enhance the vulnerability reporting capabilities. Mainly based on the Retire.js project, it is vital for users to ensure legal and responsible use, acknowledging that authors are not liable for misuse.
Add-on stats
Rating: 4.70
(10)
Creation date: 2017-04-22
Weekly download count: 191
Firefox on Android: No
Risk impact: High risk impact
Risk likelihood: Moderate risk likelihood
Manifest version: 2
Permissions:
Size: 187.21K
Email: ul*****@mediamaster.eu
Ranking
# 1346
Want to check extension ranking and stats more quickly for other Firefox add-ons?
Install
Chrome-Stats extension
to view Chrome-Stats data as you browse the Firefox Browser Add-ons.
Add-on summary
Scan a web app for use of vulnerable JavaScript libraries. The goal of Retire.js is to help you detect use of version with known vulnerabilities
Release 2.0.0 - Introduced a new repo for vulnerability reporting Release 1.7.8 - Updating vulnerability repo based on information from OSV Release 1.6.8 - Added jquery-ui CVE-2022-31160 Release 1.6.6 - Added next.js vulnerabilities Release 1.3.9 - Added CVE-2020-7676 for angular < 1.8.0 Release 1.3.8 - Added possibility of showing unknowns
NOTE: This WebExtension is mainly based on the Retire.js project - https://retirejs.github.io/retire.js/ DISCLAIMER: Usage of this add-on without prior mutual consent can be considered as an illegal activity. It is the final user's responsibility to obey all applicable local, state and federal laws. Authors assume no liability and are not responsible for any misuse or damage caused by this program.
User reviews
Pros
- Useful for developers
- Easy identification of out-of-date JS libraries
Cons
- Missing critical feature: Dark mode
Most mentioned
- Great tool for developers
- Missing critical: Dark mode
Recent reviews
Add-on safety
Risk impact
retire.js requires some sensitive permissions that could impact your browser and data security. Exercise caution before installing.
Risk likelihood
retire.js is probably trust-worthy. Prefer other publishers if available. Exercise caution when installing this add-on.
Upgrade to see risk analysis details