Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/lirantal/js-vulns-detector

Inject JS to the DOM to find vulnerable JavaScript libraries
https://github.com/lirantal/js-vulns-detector

detection detector javascript libraries webpagetest

Last synced: 7 days ago
JSON representation

Inject JS to the DOM to find vulnerable JavaScript libraries

Awesome Lists containing this project

README 

        


  js-vulns-detector






  Inject JS to the DOM to find vulnerable JavaScript libraries






  npm version

  license

  downloads

  build

  codecov

  Known Vulnerabilities

  Responsible Disclosure Policy




# About



This module provides a JavaScript bundle that can be injected into the DOM and detect which JavaScript libraries and versions are running, as well as the vulnerabilities associated with them.



This module provides several variation of bundles that can be used:



- Global - provides JavaScript code that is not wrapped, and will call and return a function call result of the data when injected.



# Install



```bash

npm install --save js-vulns-detector

```



# Usage



## One-off invocation



To generate a bundle file:



```sh

npx js-vulns-detector --global --outfile bundle.js

```



## As a library



Access the bundle directly as an npm module:



```js

import 'js-vulns-detector/dist/bundle-global.js'

```



# Contributing



Please consult [CONTRIBUTING](./CONTRIBUTING.md) for guidelines on contributing to this project.



# Author



**js-vulns-detector** © [Liran Tal](https://github.com/lirantal), Released under the [Apache-2.0](./LICENSE) License.