In [1]:
import json
import pathlib
import typing

from icecream import ic
from pydantic import BaseModel
import pandas as pd

In [2]:
cve_path = pathlib.Path("cve.json")

with open(cve_path, "r") as fp:
    data = json.load(fp)

In [3]:
class Vulnerabilty (BaseModel):
    id: str
    severity: str
    description: str
    url: str
    kind: str
    artifact: str
    version: str
    fix: str
    location: typing.List[str]

In [4]:
vuln_set: dict = {}

for item in data["matches"]:
    #ic(item)
    id = item["vulnerability"]["id"]
    
    if id not in vuln_set:
        vuln_set[id] = Vulnerabilty(
            id = item["vulnerability"]["id"],
            description = item["vulnerability"]["description"],
            severity = item["vulnerability"]["severity"],
            fix = item["vulnerability"]["fix"]["versions"][0],
            url = item["vulnerability"]["urls"][0],
            kind = item["artifact"]["type"],
            artifact = item["artifact"]["name"],
            version = item["artifact"]["version"],
            location = [ item["artifact"]["locations"][0]["path"] ],
        )
    else:
        vuln_set[id].location.append(item["artifact"]["locations"][0]["path"])

In [5]:
df = pd.DataFrame([
        item.__dict__
        for item in vuln_set.values()
    ])

columns = [ "severity", "kind", "artifact", "version", "fix", "description", "location", "id", "url" ]
df = df.reindex(columns=columns)
df = df.sort_values(by=[ "severity", "kind", "artifact", "version" ])

df_report = df.drop("url", axis=1)
df_report.head()

Unnamed: 0,severity,kind,artifact,version,fix,description,location,id


In [6]:
df_report

Unnamed: 0,severity,kind,artifact,version,fix,description,location,id


In [7]:
with open(pathlib.Path("todo.json"), "w") as fp:
    data = json.loads(df.to_json(orient="records"))
    fp.write(json.dumps(data, indent=4, sort_keys=True))