npm

retire

Scans JavaScript projects for known vulnerable library versions

brewmacoslinux
Try with needOr install directly
Source

About

Scanner detecting the use of JavaScript libraries with known vulnerabilities

Commands

retire

Examples

Scan current directory for vulnerable JavaScript dependencies$ retire
Scan specific directory and show all vulnerabilities$ retire --dir /path/to/project --severity all
Generate JSON report of vulnerabilities found$ retire --jslibraryjson --outputformat json