Merlin
retire.js

retire.js

Scanning website for vulnerable js libraries

retire.js promo image
What is retire.js?

Retire.js is a Chrome extension designed to improve online security. By scanning web apps, it can identify the usage of JavaScript libraries known to carry vulnerabilities. This tool is based on the widely appreciated RetireJS open-source project, adopting its goal of helping users detect and avoid the use of insecure versions of these libraries. With regular updates, the extension continues to adapt to newer vulnerabilities and security threats, providing users with up-to-date data about potential risks.

Download
Merlin
Stats
Stats date:
Rating: 4.86 (7)
Version: 1.9.0 (Last updated: 2023-09-21)
Creation date: 2020-06-15
Manifest version: 2
Permissions:
  • <all_urls>
  • webRequest
  • tabs
Size: 135.17K
Email: Click to see
Risk impact: High risk impact
Risk likelihood: Very low risk likelihood

Chrome-Stats Rank

# 6199 ▼ 540
Other rankings
Upgrade to see more rankings

Other platforms

Not available on Firefox
Not available on Edge
Merlin
Summary
Analyze keywords

Scan a web app for use of vulnerable JavaScript libraries. The goal of retire.js is to help you detect use of version with known vulnerabilities. Retire.js web extension isn't the original RetireJS project but is predominantly based on RetireJS opensource repo available on github - http://retirejs.github.io/retire.js/

Release 1.9.0 - Adjusting severities based on github advisory data Release 1.8.9 - Fixed severity rating Release 1.8.8 - Added tableexport.jquery.plugin vuln Release 1.8.6 - Adding jquery-deparam vuln Release 1.8.5 - Update js repository Release 1.8.4 - Fixed CVE-2019-11358 Release 1.8.3 - Sync of versions with github database Release 1.8.2 - Fixed npm name of jquery.datatables Release 1.8.1 - Improved extractor for jquery.dataTables Release 1.8.0 - Added pendo vuln Release 1.7.9 - Added one more test case Release 1.7.8 - Updating vulnerability repo based on information from OSV Release 1.7.7 - Added test case for ckeditor

See more
User reviews
Extremely easy to find out vulnerable java scripts in the application.
by Kanthanathan S Kanthanathan S, 2023-04-26
Usefull Information Security addon
by Lukas Bertoni Lukas Bertoni, 2018-08-09
Quick overview of known vulnerabilities
by Rob Schoenaker Rob Schoenaker, 2017-11-28
View all user reviews
Safety
Risk impact

retire.js is risky to use as it requires a number of sensitive permissions that can potentially harm your browser and steal your data. Exercise caution when installing this extension. Review carefully before installing. We recommend that you only install retire.js if you trust the publisher.

Risk likelihood

retire.js has earned a good reputation and can be trusted.

Upgrade to see risk analysis details
Screenshots
retire.js
Promo images
retire.js small promo image
Small promo image
Similar extensions

Here are some Chrome extensions that are similar to retire.js:

Vulners Web Scanner
Vulners Web Scanner
vankyver
4.53
8,959
OWASP Penetration Testing Kit
OWASP Penetration Testing Kit
https://pentestkit.co.uk
4.60
19,607
CounterXSS
CounterXSS
playarun93
5.00
586
Shodan
Shodan
https://shodan.io
4.53
127,046
XSS
XSS
totofish2021
5.00
2,012
Cyber Web Tools
Cyber Web Tools
https://cyberwebtools.com
1.00
1,156
YesWeHack VDP Finder
YesWeHack VDP Finder
acc+browserext
5.00
2,275
Untrusted Types for DevTools
Untrusted Types for DevTools
Thomas Orlita
5.00
1,317
HackBar
HackBar
0140454
4.15
68,767
Trufflehog
Trufflehog
dylan
5.00
6,275
Plugin Vulnerabilities
Plugin Vulnerabilities
White Fir Design
5.00
578
Hack-Tools
Hack-Tools
Ludovic COULON & Riadh BOUCHAHOUA
4.72
33,248