Vulnerability database and package search for sources such as CVE, GitHub, and so on. Uses a built-in file based storage.
Project description
Introduction
Vulndb is a vulnerability database and package search for sources such as NVD, GitHub and so on. It uses a built-in file based storage to allow offline access.
Installation
pip install appthreat-vulndb
Usage
This package is meant to be used as a library along with another cli based tool such as dep-scan. However, there is a limited cli capability available with few features to test this tool directly.
Cache vulnerability data
vdb --cache
It is possible to customise the cache behaviour by increasing the historic data period to cache by setting the following environment variables.
- NVD_START_YEAR - Default: 2016. Supports upto 2002
- GITHUB_PAGE_COUNT - Default: 5. Supports upto 20
Periodic sync
To periodically sync the latest vulnerabilities and update the database cache.
vdb --sync
Basic search
It is possible to perform simple search using the cli.
vdb --search android:8.0
vdb --search android:8.0,simplesamlphp:1.14.11
Syntax is package:version,package:version
Project details
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Hashes for appthreat_vulndb-1.0.1-py3-none-any.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | d1bb38a0bfea6b0678106243061605896a7e2ffdefaebd18695bf0a03fd0adf7 |
|
MD5 | 4fdd4127bd091a8ba699eac6964e660b |
|
BLAKE2b-256 | 8812f9a53fdf7406f64910f666f2fb6c6425f9ac009e93ab58f661c746966161 |