AppThreat's vulnerability database and package search library with a built-in file based storage. CVE and GitHub are the primary sources of vulnerabilities.

Development Status
- 5 - Production/Stable
Intended Audience
- Developers
- System Administrators
License
- OSI Approved :: MIT License
Operating System
- OS Independent
Programming Language
Topic
- Security
- Utilities

Project description

Introduction

This repo is a vulnerability database and package search for sources such as NVD, GitHub and so on. It uses a built-in file based storage to allow offline access.

Installation

pip install appthreat-vulnerability-db

Usage

This package is ideal as a library for managing vulnerabilities. This is used by dep-scan, a free open-source dependency audit tool. However, there is a limited cli capability available with few features to test this tool directly.

Cache vulnerability data

vdb --cache

It is possible to customise the cache behaviour by increasing the historic data period to cache by setting the following environment variables.

NVD_START_YEAR - Default: 2016. Supports upto 2002
GITHUB_PAGE_COUNT - Default: 5. Supports upto 20

Periodic sync

To periodically sync the latest vulnerabilities and update the database cache.

vdb --sync

Basic search

It is possible to perform simple search using the cli.

vdb --search android:8.0

vdb --search google:android:8.0

vdb --search android:8.0,simplesamlphp:1.14.11

Syntax is package:version,package:version or vendor : package : version (Without space)

Project details

Development Status
- 5 - Production/Stable
Intended Audience
- Developers
- System Administrators
License
- OSI Approved :: MIT License
Operating System
- OS Independent
Programming Language
Topic
- Security
- Utilities

Release history Release notifications | RSS feed

1.6.11

Apr 23, 2021

1.6.10

Mar 19, 2021

1.6.9

Mar 4, 2021

1.6.8

Mar 4, 2021

1.6.7

Mar 4, 2021

1.6.6

Jan 25, 2021

1.6.5

Jan 25, 2021

1.6.4

Jan 25, 2021

1.6.3

Jan 1, 2021

1.6.2

Dec 30, 2020

1.6.1

Dec 22, 2020

1.6.0

Dec 22, 2020

1.5.2

Oct 4, 2020

1.5.1

Sep 30, 2020

1.5.0

Jul 28, 2020

1.4.4

Jul 24, 2020

1.4.3

Jul 24, 2020

1.4.2

Jul 22, 2020

1.4.1

Jul 20, 2020

1.4.0

Jul 20, 2020

1.3.7

Jul 20, 2020

1.3.6

Jul 20, 2020

1.3.5

Jul 13, 2020

1.3.4

Jul 13, 2020

1.3.3

Jul 13, 2020

1.3.2

Jul 11, 2020

This version

1.3.1

Jul 11, 2020

1.3.0

Jul 10, 2020

1.2.4

Jun 18, 2020

1.2.3

Jun 11, 2020

1.2.2

Jun 11, 2020

1.2.1

Apr 7, 2020

1.2.0

Mar 20, 2020

1.1.3

Mar 19, 2020

1.1.2

Mar 19, 2020

1.1.1

Mar 18, 2020

1.1.0

Mar 7, 2020

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Files for appthreat-vulnerability-db, version 1.3.1
Filename, size	File type	Python version	Upload date	Hashes
Filename, size appthreat_vulnerability_db-1.3.1-py3-none-any.whl (27.2 kB)	File type Wheel	Python version py3	Upload date Jul 11, 2020	Hashes View
Filename, size appthreat-vulnerability-db-1.3.1.tar.gz (20.7 kB)	File type Source	Python version None	Upload date Jul 11, 2020	Hashes View

Hashes for appthreat_vulnerability_db-1.3.1-py3-none-any.whl

Hashes for appthreat_vulnerability_db-1.3.1-py3-none-any.whl
Algorithm	Hash digest
SHA256	`e8cf2073731493f09891bb41a9aa1320272e4dfb525fb46c91d110a3a55328c4`
MD5	`f50e2ff7c1c53e405f9d7baad6846d2a`
BLAKE2-256	`1710bfa25c0526657880583de9c7b94b5ada75e6b6ac5d4f16ec44198c766dbf`

Hashes for appthreat-vulnerability-db-1.3.1.tar.gz

Hashes for appthreat-vulnerability-db-1.3.1.tar.gz
Algorithm	Hash digest
SHA256	`c28c9a94e5bd9cc792c47393dabe6466eb2a92bd5e01fec4939e1621f9c7dc19`
MD5	`1eff02bcb7460c1e59f93dc3af3b00fb`
BLAKE2-256	`17696a9d8a5947b5aa5f8b0a7b6d1c2f930dac2c88ea710a2487ac34a0261ac5`