Skip to content

RetireJS/retire-site-scanner

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

26 Commits
.github/workflows
.github/workflows
 
 
src
src
 
 
tests
tests
 
 
.eslintrc.cjs
.eslintrc.cjs
 
 
.gitignore
.gitignore
 
 
.npmignore
.npmignore
 
 
.prettierrc
.prettierrc
 
 
CHANGELOG.md
CHANGELOG.md
 
 
Dockerfile
Dockerfile
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
package-lock.json
package-lock.json
 
 
package.json
package.json
 
 
publish.sh
publish.sh
 
 
tsconfig.json
tsconfig.json
 
 

Repository files navigation

retire-site-scanner

Scans a URL and looks for JavaScript libraries with known vulnerabilities using retire.js. Can also produce a partial SBOM for the site.

Install with npm

npm install -g retire-site-scanner

Run:

retire-site-scanner [-v] [--sbom] <url>

Run using docker

docker run --rm  ghcr.io/retirejs/retire-site-scanner:latest [-v] [--sbom] <url>

Install from source

git clone [email protected]:RetireJS/retire-site-scanner.git
cd retire-site-scanner
npm install

Run directly from source

npm run start -- <url> [-v] [--sbom]

Run using Docker

Build container

git clone [email protected]:RetireJS/retire-site-scanner.git
cd retire-site-scanner
docker build -t retire-site-scanner .

Scanning

docker run --rm retire-site-scanner [-v] [--sbom]

SBOM support

retire-site-scanner can generate a partial SBOM in the CycloneDX v1.4 format. This cannot be considered a complete SBOM for the web site, as it cannot necessarily detect all technologies in use, but can be used as a partial SBOM listing libraries and services.

About

No description, website, or topics provided.

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases 8

1.1.1 Latest
Mar 12, 2024
+ 7 releases

Packages 1

 

Languages