Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Rewrite of database update to use NVD NIST API from cvexplore lib #1010

Merged
merged 12 commits into from
Nov 5, 2023
Merged

Rewrite of database update to use NVD NIST API from cvexplore lib #1010

merged 12 commits into from
Nov 5, 2023

Conversation

P-T-I
Copy link
Member

@P-T-I P-T-I commented Oct 10, 2023
edited

fixes #929

github-advanced-security[bot]
github-advanced-security bot found potential problems Oct 10, 2023
View reviewed changes
web/templates/cve.html Fixed Show fixed Hide fixed
@P-T-I
Copy link
Member Author

P-T-I commented Oct 10, 2023

@oh2fih Love to hear your thoughts on this one....

This was referenced Oct 10, 2023
Closed
Closed
P-T-I added a commit to cve-search/CveXplore that referenced this pull request Oct 11, 2023
@P-T-I
[CveXplore-185] added parsing logic for cvss3 entries in cve data. cv…
a8fd14d 
…e-search/cve-search#1010 should be updated to the latest version of CveXplore.
P-T-I added a commit to cve-search/CveXplore that referenced this pull request Oct 11, 2023
@P-T-I
[CveXplore-185] added parsing logic for cvss3 entries in cve data. (#186
c6fb57e 
)

cve-search/cve-search#1010 should be updated to the latest version of CveXplore.
@m-1-k-3 m-1-k-3 mentioned this pull request Oct 11, 2023
Closed
@P-T-I P-T-I requested a review from adulau October 12, 2023 15:54
oh2fih
oh2fih reviewed Nov 2, 2023
View reviewed changes
web/templates/cve.html Outdated Show resolved Hide resolved
@oh2fih
Copy link
Contributor

oh2fih commented Nov 2, 2023

@oh2fih Love to hear your thoughts on this one....

Looks good, but haven't yet got time to actually test this.

@P-T-I @oh2fih
Update web/templates/cve.html
cad1be7 
Co-authored-by: Esa Jokinen <58781154+oh2fih@users.noreply.github.com>
@P-T-I P-T-I merged commit ec7c182 into master Nov 5, 2023
5 checks passed
@P-T-I P-T-I deleted the cve-search-929 branch November 5, 2023 06:44
@oh2fih
Copy link
Contributor

oh2fih commented Dec 4, 2023

@P-T-I @adulau There hasn't been a release since this feature has been added. The NVD retires the remaining legacy data feeds on December 15th, so it might be a good idea to release this, if it has been tested.

@adulau
Copy link
Member

adulau commented Dec 5, 2023
edited

I can do a release.

FYI, the NVD API is really unreliable. So we recently added the CVElistv5 as a source https://github.com/cve-search/vulnerability-lookup/blob/main/vulnerabilitylookup/feeders/cvelistv5.py - We will publish all the dumps too as a backup to support other projects who need the different feeds in a consistent way.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@oh2fih oh2fih oh2fih left review comments

@adulau adulau Awaiting requested review from adulau

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Plan of shift to NVD API
4 participants
@P-T-I @oh2fih @adulau @baonq-me