Mininode is a tool, which helps to reduce the attack surface of the Node.js applications by removing the unused modules and functions within the modules. Mininode uses static analysis to detect which parts of the code is actually used to construct the detailed dependency graph. In the current implementation Mininode supports coarse-grained and fine-grained reduction modes.
- Coarse-grained reduction performs reduction on file-level
- Fine-grained reduction performs reduction on function-level
The source code is available on Github