View Code? Open in Web Editor
NEW
This project forked from retirejs/retire.js
scanner detecting the use of JavaScript libraries with known vulnerabilities
Home Page: http://retirejs.github.io/retire.js/
License: Other
Batchfile 0.09%
Shell 1.81%
HTML 0.75%
JavaScript 30.33%
Roff 67.02%
retire.js's People
Watchers
retire.js's Issues
retire --nodepath "C:\wrongpath"
Works:
--jspath "C:\tmp\lib"
Error:
--jspath "C:\tmp\lib\"
--outputformat <format> Valid formats: text, json
Has a third format available: "clean"
When providing a custom ignorefile with --ignorefile
the method removeIgnoredVulnerabilitiesByIdentifier()
in scanner.js is trying to call utils.every
There isn't any "every" method in lib/utils.js
.
It is my understanding that the flag --dropexternal
should ignore the provided databases (in /repository/) and not use them.
For a more realistic example, I'm providing a custom file with --jsrepo
and want to use both the provided database and my custom.
Without --dropexternal
I expect both to be used and with the flag only my custom file should be used.
retire --path"C:\wrongpath"
retire --jspath "C:\wrongpath"