Work in progress early-development
Plan: Develop a web application for downloading and evaluating security advisories in CSAF 2.0 format for internal use of a team responsible for a number of IT related topics.
Using the following components:
- Backend to be written in Go
- PostgreSQL as database
- keycloak as identify provider
- docker-compose setup example (planned)
- svelte-flowbite for the single page web application frontend
- csaf_distribution for downloading advisories
- csaf_webview for viewing documents
- https://github.com/CERTCC/SSVC/tree/main/docs/ssvc-calc (or alternative)
- https://github.com/rtfpessoa/diff2html (or alternative)
The abbreviation expands to a German label, which translates to Internal system for downloading and evaluating advisories.
ISDuBA is Free Software licensed under the terms of the Apache License, Version 2.0.