Details

Category: Static Code Analysis

Publisher: trickest

Created Date: 6/23/2021

Container: quay.io/trickest/retire:v4.3.4-patch-3

Source URL: https://github.com/RetireJS/retire.js

Parameters

ext
string
Command: --ext - Comma separated list of file extensions for JavaScript files. The default is js
path
folder
required
Command: --path - Folder to scan for javascript files
proxy
string
Command: --proxy - Proxy url (http://some.host:8080)
cacert
file
Command: --cacert - Use the specified certificate file to verify the peer used for fetching remote jsrepo/noderepo files
colors
boolean
Command: --colors - Enable color output (console output only)
ignore
string
Command: --ignore - Comma delimited list of paths to ignore
jsrepo
string
Command: --jsrepo - Local or internal version of repo. Can be multiple comma separated. Default: 'central')
nocache
boolean
Command: --nocache - Don't use local cache
verbose
boolean
Command: --verbose - Show identified files (by default only vulnerable files are shown)
insecure
boolean
Command: --insecure - Enable fetching remote jsrepo/noderepo files from hosts using an insecure or self-signed SSL (TLS) certificate
severity
string
Command: --severity - Specify the bug severity level from which the process fails. Allowed levels none, low, medium, high, critical. Default: none
ignorefile
file
Command: --ignorefile - Custom ignore file, defaults to .retireignore / .retireignore.json
includeOsv
boolean
Command: --includeOsv - Include OSV advisories in the output
outputformat
string
Command: --outputformat - Valid formats: text, json, jsonsimple, depcheck (experimental), cyclonedx and cyclonedxJSON