vulnerablecode
vulnerablecode copied to clipboard
A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase...
Moving forward we would want to unify the DataSource class used in VulnerableCode (aka Importers) and VulnTotal - The unified DataSource class would be capable of fetching advisories for individual...
Do we want to require the user to enter some value in the search box for both package and vulnerability searches? Package search currently allows an empty search; vulnerability search...
In the new UI, one task I'm working on is providing succinct user instructions on the new landing page for both a vulnerable package search and a vulnerability search. This...
These are examples of references where we should also extract a reference id for the the CVEs, but we do not: - https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-3866.json - https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3866
Again. https://github.com/nexB/vulnerablecode/actions/workflows/test-import-using-nix.yml