No project description provided
Project description
Get Technology Stack Vulnerabilities
This package is useful for fetching known vulnerabilities of third party components used in projects from NVD site.
Getting Started
Using get-techstack-vulnerabilities takes almost no time! Simply install via the pip command:
pip install scantechstackvulns
From here you can import it into your source file by calling:
from scantechstackvulns import TechStack
How it works
It takes list of thirdparty components with versions as a input and generates an excel file of known vulnerabilities of that list of components.
Usage
The below is the way to use of this package
from scantechstackvulns import TechStack
technology_stack = [
"postgresql 11.11", #|
"spring framework vmware 4.3.25", #|
"spring framework pivotal 4.3.25", #|----- sample data
"apache tomcat 9.0.58", #|
"oracle jdk 1.8.0 update 252" #|
]
output_file = "directory/file_name.xlsx"
TechStack.scan(techstack, output_file)
Note
- technology stack must contain exact version
- as of now only xlsx extension supports in output file
- here is the sample xlsx file to verify
License
This repository is licensed under the MIT license. See LICENSE for details.
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Close
Hashes for scantechstackvulns-1.0.3-py3-none-any.whl
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 09cc80a742a68e74ed8eec4b017d2a87ea986cfe3ca1528abcf8def63c923a02 |
|
| MD5 | cbb7c160d967dc7fc4f3484dd98e156d |
|
| BLAKE2b-256 | 0daf5501ae522445d04cb0b01a1950a67ccba30ff1e7f68b535c9b0f6387b92d |
