vulndb

command
v0.16.0-rc.1 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Jan 29, 2025 License: MIT Imports: 12 Imported by: 0

README

Vulndb

Vulndb is a tiny sqlite file that contains information useful to statically look up known vulnerabilities in container images based on their source repositories. For now it uses GitHub's advisory database.

The database is updated daily and published as an OCI artifact used by Cupdate. The artifact is available here: https://github.com/AlexGustafsson/cupdate/pkgs/container/cupdate%2Fvulndb.

For more advanced scanning requirements, use something like Trivy or Grype.

Running

When run, vulndb will download its source data, compile it and push an OCI artifactory. It is intended to run as a GitHub action.

INPUT_GITHUB_ACTOR="..." INPUT_GITHUB_TOKEN="..." go run tools/vulndb/*.go

Schema

See internal/db/createTablesIfNotExist.sql.

Data sources

Documentation

The Go Gopher

There is no documentation for this package.

Source Files

View all Source files

Directories

Path Synopsis
internal
db
git
oci
ossf

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.