issues
search
RetireJS
/
retire.js
scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.
https://retirejs.github.io/retire.js/
Other
3.6k
stars
412
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
In a CycloneDX provide info on evidence/occurence
#439
tschroeder13
closed
2 days ago
2
Detect and warn about usage of polyfill.io
#438
coliff
closed
1 week ago
3
[BUG] Filename match doesn't work on windows
#437
stephen-carter-at-sf
closed
3 weeks ago
5
retirejs doesnot detect pdfobject.js
#436
rashmimehta300
closed
1 month ago
0
Fixes #434 - Add pdf.js detection
#435
eoftedal
closed
1 month ago
1
retire js doesnot detect pdfjs
#434
rashmimehta300
closed
1 month ago
0
Zod upgrade to "^3.23.5"
#433
b34c0n5
closed
1 month ago
1
update zod module
#432
b34c0n5
closed
1 month ago
3
False positive with axios and version string inside comments in axios-mock-adapter
#431
yihuaf
closed
2 months ago
1
Unable to build Chrome Extension
#430
kwkeefer
closed
2 months ago
5
Add Mathjax to the repository
#429
adarisc
closed
3 months ago
2
Upstream code from third party maintained browser plugins
#428
eloydegen
opened
4 months ago
3
wrong package version is being reported for lodash
#427
Ravi-Kishore-M
closed
5 months ago
2
Extend AngularJS filecontent regex to match contents of 1.8.0 AngularJS
#426
rossturner
closed
5 months ago
5
Switch to new repo format preserving the old
#425
eoftedal
closed
8 months ago
0
Update next.js vuln: added required 'info' attribute
#424
bbossola
closed
8 months ago
5
Invalid jsrepository.json
#423
aurelien-baudin
closed
8 months ago
2
False Positive of momentjs cve-2022-24785
#422
ghsec
closed
8 months ago
4
--outputformat json flag doesn't seem to work
#421
Harika19
closed
8 months ago
12
--ignore does not ignore given application subdirectory
#420
michaelfranzl
closed
10 months ago
3
Bug in JSZip extractor
#419
peizhenp
closed
10 months ago
0
Require Support
#418
0xAmal
closed
10 months ago
9
Changed node/lib/retire.d.ts to be copied
#417
mgillam
closed
10 months ago
0
Complete type definitions for npm package
#416
mgillam
closed
10 months ago
4
Update references
#415
kingthorin
closed
11 months ago
0
Fixed typo in README.md
#414
kostasx
closed
1 year ago
1
purl for datatables incorrect
#413
rashmimehta300
closed
1 year ago
0
Added vulnerable Highcharts detection on version below 9.0.0
#412
ghsec
closed
1 year ago
5
Update blogpost.md
#411
ashutoshvimal
closed
1 year ago
1
purl generated for few components as part cyclonedx BOM is incorrect
#410
rashmimehta300
closed
1 year ago
1
purl of moment.js is still wrong
#409
rashmimehta300
closed
1 year ago
0
Can retire generate cyclonedx SBOM with license of library
#408
rashmimehta300
opened
1 year ago
1
Can retire generate cyclonedx SBOM for all the js scanned and not just vulnerable js
#407
rashmimehta300
closed
1 year ago
4
Retire not generating correct purl when creating cyclonedx bom
#406
rashmimehta300
closed
1 year ago
0
Downstream dependency vm2 has critical vulnerability CVE-2023-29017
#405
markberryms
closed
1 year ago
11
Invalid property name, because of zod lib
#404
lubotsenov
closed
1 year ago
1
Remove the "" results for duplicate components in cyclonedxJSON output.
#403
jhodgkinson-splunk
closed
1 year ago
2
cycloneDXJSON "" components
#402
jhodgkinson-splunk
closed
1 year ago
1
Added CKEditor Vulnerable version less than 4.21.0
#401
enggfraz
closed
1 year ago
1
Added the CKEditor Library for Vulnerable Versions
#400
enggfraz
closed
1 year ago
1
False positives on jquery-ui 1.13.2 and ckeditor.js 4.20.2
#399
freedmandil
closed
1 year ago
3
Add chart.js CVE-2020-7746
#398
samstiv
closed
1 year ago
0
Invalid CycloneDX output
#397
bretik
closed
1 year ago
4
It does not give license information. Is there any way to get licenses along with vulnerability.
#396
ashutoshvimal
closed
1 year ago
1
Bump vm2 from 3.9.9 to 3.9.11 in /node
#395
dependabot[bot]
closed
1 year ago
0
Wrong CVE Scores
#394
DorShaer
closed
1 year ago
2
Update jsrepository.json
#393
enggfraz
closed
1 year ago
0
Update jsrepository.json
#392
enggfraz
closed
1 year ago
0
Update jsrepository.json for Momentjs CVE-2022-31129
#391
enggfraz
closed
1 year ago
1
Update jsrepository.json- For Moment.js vulnerability in Version less than 2.29.4
#390
enggfraz
closed
1 year ago
0
Next