RetireJS
RetireJS is an engine that analyzes a project’s third-party JavaScript dependencies and identifies security vulnerabilities. It has a thriving community, and its database of vulnerable libraries is updated frequently.
Run this command to view detailed information about all the RetireJS rules:
For information on how to modify rule settings, such as their severity or tags, see Customize Your Configuration. While the examples show modifying rules for the ESLint and Regex engines, you use the same process to modify RetireJS rules.
| Field | Type | Description |
|---|---|---|
disable_engine | boolean | Whether to turn off the 'retire-js' engine so that it is not included when running Code Analyzer commands. Default value is false. |