js-vulns-detector

Inject JS to the DOM to find vulnerable JavaScript libraries

About

This module provides a JavaScript bundle that can be injected into the DOM and detect which JavaScript libraries and versions are running, as well as the vulnerabilities associated with them.

This module provides several variation of bundles that can be used:

Global - provides JavaScript code that is not wrapped, and will call and return a function call result of the data when injected.

Install

npm install --save js-vulns-detector

Usage

One-off invocation

To generate a bundle file:

npx js-vulns-detector --global --outfile bundle.js

As a library

Access the bundle directly as an npm module:

import 'js-vulns-detector/dist/bundle-global.js'

Contributing

Please consult CONTRIBUTING for guidelines on contributing to this project.

Name		Name	Last commit message	Last commit date
Latest commit History 18 Commits
.github		.github
__tests__		__tests__
bin		bin
scripts		scripts
src		src
vendors/snyk		vendors/snyk
.babelrc		.babelrc
.gitignore		.gitignore
.prettierrc.js		.prettierrc.js
.travis.yml		.travis.yml
CODE_OF_CONDUCT.md		CODE_OF_CONDUCT.md
CONTRIBUTING.md		CONTRIBUTING.md
LICENSE		LICENSE
README.md		README.md
SECURITY.md		SECURITY.md
jsdoc.json		jsdoc.json
package-lock.json		package-lock.json
package.json		package.json

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

js-vulns-detector

About

Install

Usage

One-off invocation

As a library

Contributing

Author

About

Releases 6

Packages

Languages

License

lirantal/js-vulns-detector

Folders and files

Latest commit

History

Repository files navigation

js-vulns-detector

About

Install

Usage

One-off invocation

As a library

Contributing

Author

About

Topics

Resources

License

Code of conduct

Security policy

Stars

Watchers

Forks

Releases 6

Packages 0

Languages

Packages