ruby-advisory-db icon indicating copy to clipboard operation
ruby-advisory-db copied to clipboard

Published 20 hours ago verified publisher icon rubysec

[GHSA sync] Pull CVSS score from NVD

Open reedloden opened this issue 6 years ago • 3 comments

Can we pull the CVSS score(s) from NVD via https://github.com/olbat/nvdcve when writing advisories?

reedloden avatar Jul 06 '19 15:07 reedloden

@rschultheis ^^

reedloden avatar Jul 17 '19 10:07 reedloden

btw, I have plans to write an NVD library that we can use.

postmodern avatar Dec 05 '20 08:12 postmodern

fun fact: we're actually in the process of backloading cvss and cwes into the gh data. maybe another month or so should be able to sync it off the github feed 🤔

phillmv avatar Dec 06 '20 19:12 phillmv

Closing this as the github_advisory_sync script now populates CVSS scores.

postmodern avatar May 23 '23 20:05 postmodern