osvdb

package module

v0.0.0-...-d3ea951 Latest Latest Go to latest Published: Dec 31, 2023 License: Apache-2.0 Imports: 12 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/luhring/osvdb

Links

Open Source Insights

README ¶

osvdb

Go library and CLI tool for consuming OSV data, building a vulnerability database, and querying the database

Why?

The data coming from the Open Source Vulnerabilities (OSV) community is some of the best vulnerability data in existence. It's usually made available as git repositories with thousands of files, or as an online database accessible through APIs.

This project aims to make it easier to consume OSV data locally and/or offline by providing a library and CLI tool for building and querying custom SQLite databases of OSV data.

Installation

Library

go get -u github.com/luhring/osvdb@latest

CLI

go install github.com/luhring/osvdb/cmd/osvdb@main

Examples

Build a local database of GitHub Security Advisories

Clone GitHub's advisory-database repository to get the latest OSV data.

git clone --depth 1 https://github.com/github/advisory-database.git ghsa

Build the SQLite database!

osvdb build -R ghsa/advisories/github-reviewed -o ghsa.db

Query the database!

sqlite3 ghsa.db "SELECT * FROM vulnerabilities WHERE vulnerability_id = 'GHSA-2fr7-cc7p-p45q';"

Ideas for the future...

Smart updates to the database (only update what's changed)
Namespaces for vulnerabilities to allow for multiple data sources in the same database
Native support for consuming well-known OSV data sources
Optimize the performance of database builds
Standardize the database location on the local filesystem
More... open an issue with your idea!

Documentation ¶

Index ¶

type Build
- func (cfg Build) Do(ctx context.Context, inputs ...Input) error
type Input
- func NewFSInput(fsys fs.FS, recursive bool) Input
- func NewFileInput(path string) Input

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

This section is empty.

Types ¶

type Build ¶

type Build struct {
	// OutputDatabaseLocation is the location of the SQLite database to write
	OutputDatabaseLocation string

	// OverwriteDatabase specifies whether to overwrite the database if it already exists
	OverwriteDatabase bool
}

Build specifies the configuration for building a database.

func (Build) Do ¶

func (cfg Build) Do(ctx context.Context, inputs ...Input) error

Do builds the database.

type Input ¶

type Input func(context.Context) (data io.Reader, cleanup func(), err error)

An Input provides access to JSON-encoded OSV data

func NewFSInput ¶

func NewFSInput(fsys fs.FS, recursive bool) Input

NewFSInput returns an Input that reads from JSON files in a file system.

func NewFileInput ¶

func NewFileInput(path string) Input

NewFileInput returns an Input that reads from a file.

Source Files ¶

View all Source files

Directories ¶

Path	Synopsis
cmd
osvdb
model
osv

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL