Replication of VERJava

Navigation

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for sunbk201 from gravatar.com sunbk201

Unverified details

These details have not been verified by PyPI
Meta
  • License: MIT License
  • Author: SunBK201
  • Requires: Python >=3.10
Classifiers
Report project as malware

Project description

VERJava

Replication of VERJava. VERJava is a two-stage approach for identifying vulnerable versions of Java Open Source Software (OSS) projects.

Install

pip install verjava

Usage

from verjava import verjava

# results will be a list of vulnerability repo tags
vul_tags: list[str] = verjava(
    repo_path="/path/to/your/repo",
    commit_id="your_commit_id", # Patch Commit
)

If you want to adjust the parameters, you can do so by passing them as keyword arguments:

vul_tags: list[str] = verjava(
    repo_path="/path/to/your/repo",
    commit_id="your_commit_id",
    tDel=1.0,  # Threshold for deleted lines similarity
    tAdd=0.9,  # Threshold for added lines similarity
    T=0.8,     # Threshold for vulnerability ratio
)

Project details

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for sunbk201 from gravatar.com sunbk201

Unverified details

These details have not been verified by PyPI
Meta
  • License: MIT License
  • Author: SunBK201
  • Requires: Python >=3.10
Classifiers

Release history Release notifications | RSS feed

This version

0.0.3

0.0.2

0.0.1

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

verjava-0.0.3.tar.gz (7.7 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

verjava-0.0.3-py3-none-any.whl (8.1 kB view details)

Uploaded Python 3

File details

Details for the file verjava-0.0.3.tar.gz.

File metadata

  • Download URL: verjava-0.0.3.tar.gz
  • Upload date:
  • Size: 7.7 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.12.9

File hashes

Hashes for verjava-0.0.3.tar.gz
Algorithm Hash digest
SHA256 ea3d0f433122a7264d8e2715252f7b4df30baa33cc1bb91661eeb9fe8b5b8474
MD5 6c793db58535aadb323d7456e94e80f2
BLAKE2b-256 241a1a6381aa7bc22168c601d0384c88524138c65c4d5158a8a9d2662336f20d

See more details on using hashes here.

Provenance

The following attestation bundles were made for verjava-0.0.3.tar.gz:

Publisher: python-publish.yml on SunBK201/VERJava

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file verjava-0.0.3-py3-none-any.whl.

File metadata

  • Download URL: verjava-0.0.3-py3-none-any.whl
  • Upload date:
  • Size: 8.1 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.12.9

File hashes

Hashes for verjava-0.0.3-py3-none-any.whl
Algorithm Hash digest
SHA256 c1d1eb078a690a137a257fc7141f60b787522ba758b4ad6566378906e9937922
MD5 091a72169ce473ba1fb002f4cca4dc6a
BLAKE2b-256 542d0e3cd9965690cefce7dbac672c168b33a002e9602fcf3ae7c1b562761bd9

See more details on using hashes here.

Provenance

The following attestation bundles were made for verjava-0.0.3-py3-none-any.whl:

Publisher: python-publish.yml on SunBK201/VERJava

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page