vulnerablecode icon indicating copy to clipboard operation
vulnerablecode copied to clipboard
verified publisher icon nexB

Filter out OSVDB and normalize URL references in Metasploit pipeline …

Open sarafarajnasardi opened this issue 4 months ago • 0 comments

What does this PR do?

  • Skips OSVDB-prefixed references when processing Metasploit data
  • Strips "URL-" prefix from references and extracts commit links if present
  • Ensures commit links are stored in notes in a sorted order

Why is this needed?

Some references in Metasploit data include OSVDB identifiers and URL-prefixed strings, which are inconsistent and can cause invalid aliases. This change normalizes references and ensures proper commit link handling.

How was this tested?

  • Created a test file locally to simulate Metasploit data
  • Ran the pipeline using the modified code
  • Verified that:
    • OSVDB references are skipped
    • URL-prefixed references are normalized
    • Commit links appear correctly in notes under commit_links

Related issue

  • Fixes #1991

sarafarajnasardi avatar Sep 01 '25 13:09 sarafarajnasardi