Scanning website for vulnerable js libraries

retire.js promo image
What is retire.js?

Retire.js is a Chrome extension designed to improve online security. By scanning web apps, it can identify the usage of JavaScript libraries known to carry vulnerabilities. This tool is based on the widely appreciated RetireJS open-source project, adopting its goal of helping users detect and avoid the use of insecure versions of these libraries. With regular updates, the extension continues to adapt to newer vulnerabilities and security threats, providing users with up-to-date data about potential risks.

Stats date:
Rating: 4.86 (7)
Version: 1.9.0 (Last updated: 2023-09-21)
Creation date: 2020-06-15
Manifest version: 2
  • <all_urls>
  • webRequest
  • tabs
Size: 135.17K
Email: Click to see
Risk impact: High risk impact
Risk likelihood: Very low risk likelihood

Other platforms

Not available on Firefox
Not available on Edge

Scan a web app for use of vulnerable JavaScript libraries. The goal of retire.js is to help you detect use of version with known vulnerabilities. Retire.js web extension isn't the original RetireJS project but is predominantly based on RetireJS opensource repo available on github -

Release 1.9.0 - Adjusting severities based on github advisory data Release 1.8.9 - Fixed severity rating Release 1.8.8 - Added tableexport.jquery.plugin vuln Release 1.8.6 - Adding jquery-deparam vuln Release 1.8.5 - Update js repository Release 1.8.4 - Fixed CVE-2019-11358 Release 1.8.3 - Sync of versions with github database Release 1.8.2 - Fixed npm name of jquery.datatables Release 1.8.1 - Improved extractor for jquery.dataTables Release 1.8.0 - Added pendo vuln Release 1.7.9 - Added one more test case Release 1.7.8 - Updating vulnerability repo based on information from OSV Release 1.7.7 - Added test case for ckeditor

See more
User reviews
Extremely easy to find out vulnerable java scripts in the application.
by Kanthanathan S Kanthanathan S, 2023-04-26

Usefull Information Security addon
by Lukas Bertoni Lukas Bertoni, 2018-08-09

Quick overview of known vulnerabilities
by Rob Schoenaker Rob Schoenaker, 2017-11-28
View all user reviews
Risk impact

retire.js is risky to use as it requires a number of sensitive permissions that can potentially harm your browser and steal your data. Exercise caution when installing this extension. Review carefully before installing. We recommend that you only install retire.js if you trust the publisher.

Risk likelihood

retire.js has earned a good reputation and can be trusted.

Upgrade to see risk analysis details
Promo images
retire.js small promo image
Small promo image
Similar extensions

Here are some Chrome extensions that are similar to retire.js: