library

package
v0.0.0-...-82b092a Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Feb 25, 2023 License: Apache-2.0 Imports: 15 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

View Source
var ErrSBOMSupportOnly = xerrors.New("SBOM support only")

Functions

func Detect

func Detect(libType string, pkgs []ftypes.Package) ([]types.DetectedVulnerability, error)

Detect scans and returns vulnerabilities of library

Types

type Driver

type Driver struct {
	// contains filtered or unexported fields
}

Driver represents security advisories for each programming language

func NewDriver

func NewDriver(libType string) (Driver, error)

NewDriver returns a driver according to the library type

func (*Driver) DetectVulnerabilities

func (d *Driver) DetectVulnerabilities(pkgID, pkgName, pkgVer string) ([]types.DetectedVulnerability, error)

DetectVulnerabilities scans buckets with the prefix according to the ecosystem. If "ecosystem" is pip, it looks for buckets with "pip::" and gets security advisories from those buckets. It allows us to add a new data source with the ecosystem prefix (e.g. pip::new-data-source) and detect vulnerabilities without specifying a specific bucket name.

func (*Driver) Type

func (d *Driver) Type() string

Type returns the driver ecosystem

Directories

Path Synopsis
npm

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL