cvelistrepo

package

v0.0.0-...-f538f38 Latest Latest Go to latest Published: Jun 5, 2024 License: BSD-3-Clause, CC-BY-4.0 Imports: 27 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Package cvelistrepo supports working with the repo containing the list of CVEs.

View Source

const (
	URLv4 = "https://github.com/CVEProject/cvelist"
	URLv5 = "https://github.com/CVEProject/cvelistV5"
)

URLs of the CVE project list repos.

This section is empty.

func FetchCVE[T any](ctx context.Context, repo *git.Repository, cveID string) (_ T, err error)

FetchCVE fetches the CVE file for cveID from the CVElist repo and returns the parsed info.

func Parse[T any](repo *git.Repository, f File) (T, error)

Parse unmarshals the contents of f.

func TestToReport[S report.Source](t *testing.T, update, realProxy bool) error

func UpdateTxtar(ctx context.Context, t *testing.T, url string)

type File struct {
	DirPath  string
	Filename string
	TreeHash plumbing.Hash
	BlobHash plumbing.Hash
	Year     int
	Number   int
}

A File is a file in the cvelist repo that contains a CVE.

func Files(repo *git.Repository, commit *object.Commit) (_ []File, err error)

Files returns all the CVE files in the given repo commit, sorted by name.

func (f *File) ReadAll(repo *git.Repository) ([]byte, error)