Merlin
retire.js

retire.js

Scanning website for vulnerable js libraries.

What is retire.js?
retire.js is a Firefox add-on designed to help developers scan web applications for outdated JavaScript libraries with known vulnerabilities. The tool provides updates on various JS libraries, including jquery-ui and next.js, as well as Angular vulnerabilities. New releases enhance the vulnerability reporting capabilities. Mainly based on the Retire.js project, it is vital for users to ensure legal and responsible use, acknowledging that authors are not liable for misuse.
Download
Merlin
Stats
Version: 2.0.3 (Last updated: 2024-04-26)
Creation date: 2017-04-22
Weekly download count: 243
Firefox on Android: No
Risk impact: High risk impact
Risk likelihood: Moderate risk likelihood
Manifest version: 2
Permissions:
  • <all_urls>
  • webRequest
  • tabs
Size: 152.23K
Stats date:

Chrome-Stats Rank

# 1416 ▲ 36
Other rankings
Upgrade to see more rankings

Other platforms

Not available on Chrome
Not available on Edge
Want to check extension ranking and stats more quickly for other Firefox add-ons? Install Chrome-Stats extension to view Chrome-Stats data as you browse the Firefox Browser Add-ons.
Chrome-Stats extension
Merlin
Summary
Analyze keywords

Scan a web app for use of vulnerable JavaScript libraries. The goal of Retire.js is to help you detect use of version with known vulnerabilities

Release 2.0.0 - Introduced a new repo for vulnerability reporting Release 1.7.8 - Updating vulnerability repo based on information from OSV Release 1.6.8 - Added jquery-ui CVE-2022-31160 Release 1.6.6 - Added next.js vulnerabilities Release 1.3.9 - Added CVE-2020-7676 for angular < 1.8.0 Release 1.3.8 - Added possibility of showing unknowns

NOTE: This WebExtension is mainly based on the Retire.js project - https://retirejs.github.io/retire.js/ DISCLAIMER: Usage of this add-on without prior mutual consent can be considered as an illegal activity. It is the final user's responsibility to obey all applicable local, state and federal laws. Authors assume no liability and are not responsible for any misuse or damage caused by this program.

User reviews
by geeknik, 2024-04-25
by geeknik, 2024-04-25
by geeknik, 2024-04-25
View all user reviews
Safety
Risk impact

retire.js is risky to use as it requires a number of sensitive permissions that can potentially harm your browser and steal your data. Exercise caution when installing this add-on. Review carefully before installing. We recommend that you only install retire.js if you trust the publisher.

Risk likelihood

retire.js is probably trust-worthy. Prefer other publishers if available. Exercise caution when installing this add-on.

Upgrade to see risk analysis details
Screenshots
retire.js