cve-bin-tool icon indicating copy to clipboard operation
cve-bin-tool copied to clipboard
verified publisher icon intel

bug: NVD access fails if no NVD API key specified or found

Open anthonyharrison opened this issue 3 years ago • 0 comments

The default access to the NVD database is now to use the NVD API using a NVD API Key. However, if no API Key is specified or discovered using the environment variable NVD_API_KEY, the access to the database still attempts to use the API access resulting in a 403 error (Forbidden) being returned.

Suggested improvements:

  • if the NVD API Key is not specified or found, the default access is set to JSON.
  • if an attempt to use the NVD API fails with a 403 error, suggest that attempting to download the data is abandonned

anthonyharrison avatar Aug 01 '22 21:08 anthonyharrison