retire.js

Scanning website for vulnerable js libraries.

Retire.js Firefox Add-on: Vulnerability Scanner

retire.js is a Firefox add-on designed to help developers scan web applications for outdated JavaScript libraries with known vulnerabilities. The tool provides updates on various JS libraries, including jquery-ui and next.js, as well as Angular vulnerabilities. New releases enhance the vulnerability reporting capabilities. Mainly based on the Retire.js project, it is vital for users to ensure legal and responsible use, acknowledging that authors are not liable for misuse.

Download

View on Firefox Browser Add-ons

Add-on stats

By: Francesco De Stefano

Users: 4,323

-7

Rating: 4.73

(11)

Version: 2.1.0 (Last updated: 2024-11-23)

Creation date: 2017-04-22

Weekly download count: 303

Firefox on Android: No

Risk impact: High risk impact

Risk likelihood:

Moderate risk likelihood

Manifest version: 2

Permissions:

<all_urls>
webRequest
tabs

Size: 187.97K

Email: ul*****@mediamaster.eu

Ranking

# 1,271 ▲ 5

Other rankings

#146 in Web Development ▼ 1

#257 in Privacy & Security

#14 in scan keyword 23 ▲ 1

#18 in disclaimer keyword 24

#21 in return keyword 34 ▼ 1

Upgrade to see more rankings

Other platforms

retire.js (v1.9.0)

4.89

(9) 20,000

Not available on Android

Not available on Edge

Want to check extension ranking and stats more quickly for other Firefox add-ons? Install Chrome-Stats extension to view Firefox-Stats data as you browse the Firefox Browser Add-ons.

Add-on summary

Analyze keywords

Scan a web app for use of vulnerable JavaScript libraries. The goal of Retire.js is to help you detect use of version with known vulnerabilities

Release 2.0.0 - Introduced a new repo for vulnerability reporting Release 1.7.8 - Updating vulnerability repo based on information from OSV Release 1.6.8 - Added jquery-ui CVE-2022-31160 Release 1.6.6 - Added next.js vulnerabilities Release 1.3.9 - Added CVE-2020-7676 for angular < 1.8.0 Release 1.3.8 - Added possibility of showing unknowns

NOTE: This WebExtension is mainly based on the Retire.js project - https://retirejs.github.io/retire.js/ DISCLAIMER: Usage of this add-on without prior mutual consent can be considered as an illegal activity. It is the final user's responsibility to obey all applicable local, state and federal laws. Authors assume no liability and are not responsible for any misuse or damage caused by this program.

User reviews

These summaries are automatically generated weekly using AI based on recent user reviews. Firefox Browser Add-ons does not verify user reviews, so some user reviews may be inaccurate, spammy, or outdated.

Pros

Very good at picking up out of date JS libraries.
Useful tool for developers.

Cons

Missing dark mode.
Need for improved table layout and sorting of results.
Lack of JavaScript library icons next to names.

Most mentioned

The add-on is useful in professional settings.
Suggestions for improvements related to UI and features.

User reviews

by igorlogius, 2024-12-05

by geeknik, 2024-04-25

View all user reviews

Add-on safety

Risk impact

retire.js requires some sensitive permissions that could impact your browser and data security. Exercise caution before installing.

Risk likelihood

retire.js is probably trust-worthy. Prefer other publishers if available. Exercise caution when installing this add-on.

Upgrade to see risk analysis details