Join GitHub today
GitHub is home to over 20 million developers working together to host and review code, manage projects, and build software together.
Sign up
Java
HTML
Haskell
JavaScript
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
|
Failed to load latest commit information. |
|
.settings
|
Removing binaries - adding some tests and fixing a bit
|
Nov 29, 2014
|
|
|
.svn
|
First commit
|
Nov 24, 2014
|
|
|
build
|
With Eoftedal's changes
|
Nov 29, 2014
|
|
|
lib
|
First commit
|
Nov 24, 2014
|
|
|
src
|
Create retire.html
|
May 18, 2015
|
|
|
test
|
Removing binaries - adding some tests and fixing a bit
|
Nov 29, 2014
|
|
|
testlib
|
First commit
|
Nov 24, 2014
|
|
|
.classpath
|
Removing binaries - adding some tests and fixing a bit
|
Nov 29, 2014
|
|
|
.gitignore
|
Removing binaries - adding some tests and fixing a bit
|
Nov 29, 2014
|
|
|
.project
|
First commit
|
Nov 24, 2014
|
|
|
README.md
|
Update README.md
|
May 25, 2015
|
README.md
What you require you must also retire.
There are plenty of JavaScript libraries available on the web and Node.js applications out there.
Statistics show that nearly eighty percent code in a typical modern web application comes from third party libraries.
A web application is therefore also vulnerable to the vulnerabilities of third party libraries that it uses.
It is very critical for a web application to stay up-to-date with security fixes of these third party libraries.
Retire.js is an open-source tool that scans a website and generates alerts about the vulnerable versions of JavaScript libraries
used by it. ZAP is a very popular, open source web penetration testing tool.
This project involves writing a Retire.js add-on for ZAP.
Thanks to:
Press h to open a hovercard with more details.
文章来源: https://github.com/nikmmy/retire/
如有侵权请联系:admin#unsafe.sh