New
Codemod Registry
Explore community-led codemods to migrate, optimize, and transform your codebase.
+600 codemods published
Ready to contribute?
Build your own codemod and share it with the community.
Explore community-led codemods to migrate, optimize, and transform your codebase.
Build your own codemod and share it with the community.
Explore community-led codemods to migrate, optimize, and transform your codebase.
Handle DEP0185: Instantiating node:repl classes without new
Transform CryptoJS.MD5() calls to use CryptoJS.SHA256() for stronger cryptographic security. MD5 is cryptographically broken and vulnerable to collision attacks.
using arkregex instead of `new RegExp`
Updates MySQL connection configurations to use environment variables instead of hardcoded passwords
Replaces deprecated Node.js crypto functions like crypto.createHash('md5') with secure alternatives
Transform fetch() calls to explicitly set credentials: 'same-origin' instead of 'include' to prevent CSRF vulnerabilities
Handle DEP0093 via transforming `crypto.fips` to `crypto.getFips()` and `crypto.setFips()`
Automatically enable CSRF prevention in Apollo GraphQL Server v3 by setting csrfPrevention: true in server configuration
Transform Express.js res.send() calls that concatenate user input directly into HTML to use proper HTML escaping to prevent XSS vulnerabilities
Transform Express.js static middleware configurations to explicitly disable directory listing
Transform Koa.js applications using koa-body or koa-bodyparser without size limits to include proper limits
Transform express-session configuration to include secure: true, httpOnly: true, and sameSite settings
Build your own codemod and share it with the community.