Cut CVE alert fatigue — ranks pip-audit output by real exploitability using any LLM provider
Project description
vulntriage
Rank pip-audit CVEs by real exploitability using an LLM.
pip-audit reports every vulnerability your dependencies carry — but a CVSS 9.8 in a transitive dependency you never call is not the same risk as a CVSS 5.0 in your HTTP client that handles every request. vulntriage feeds your CVE list, your actual dependency stack, and authoritative threat intelligence (NVD CVSS, CISA KEV, EPSS) to an LLM, which ranks them by real reachability rather than raw severity score.
Requirements
- Python 3.11+
pip-auditinstalled and onPATH(pip install pip-audit)- An Anthropic API key — or credentials for OpenAI, Gemini, or a local Ollama instance
Installation
pip install vulntriage
Usage
export ANTHROPIC_API_KEY="sk-ant-..."
# Scan the current directory (needs requirements.txt or pyproject.toml)
vulntriage scan
# Scan a specific project
vulntriage scan --project-root /path/to/project
# Gate CI on CRITICAL only (not the default HIGH)
vulntriage scan --fail-on CRITICAL
# Save a timestamped JSON report
vulntriage scan --output-dir ./reports
# Skip all network fetches (use cached threat intel only)
vulntriage scan --offline
# Output machine-readable JSON (status messages go to stderr)
vulntriage scan --format json
Flags
| Flag | Default | Description |
|---|---|---|
--project-root / -p |
. |
Directory containing requirements.txt or pyproject.toml |
--provider |
anthropic |
LLM backend: anthropic / openai / gemini / ollama |
--model |
provider default | Model name to use (e.g. phi4-mini, gpt-4o-mini) |
--fail-on |
none |
Exit 1 if any CVE at or above this severity: CRITICAL / HIGH / MEDIUM / LOW / INFO / none |
--format / -f |
table |
Output format: table (Rich), json, or sarif |
--output-dir |
— | Save a timestamped JSON report to this directory after each scan |
--offline |
— | Skip all external API calls; use cached threat intel only |
--no-cache |
— | Bypass the 24-hour threat-intel cache and re-fetch from NVD/KEV/EPSS |
--batch-size |
10 |
Max CVEs per LLM call (reduce to ≤10 for local models with small context windows) |
--airgap |
— | Fully air-gapped mode: skip pip-audit network calls and all threat intel fetches |
Output
╭─────────────────────────────────────────────────────────────╮
│ vulntriage — CVE Priority Report │
├───┬──────────────────────┬──────────────────┬──────┬──────┬───────┬───────────────────────────────────┬──────────────────────────────┬──────────────────────────────────╮
│ # │ CVE / PYSEC ID │ Package │ Risk │ CVSS │ EPSS │ Reasoning │ Breaking Changes │ Fix │
├───┼──────────────────────┼──────────────────┼──────┼──────┼───────┼───────────────────────────────────┼──────────────────────────────┼──────────────────────────────────┤
│ 1 │ CVE-2024-35195 │ requests 2.31.0 │ HIGH │ 9.1 │ 12.3% │ SSRF via proxied requests; direct │ verify=True is now the │ pip install requests>=2.32.0 │
│ │ ★ CISA KEV │ → 2.32.0 │ │ │ │ dep called at every API boundary │ default—audit any verify=False │ │
├───┼──────────────────────┼──────────────────┼──────┼──────┼───────┼───────────────────────────────────┼──────────────────────────────┼──────────────────────────────────┤
│ 2 │ CVE-2022-40897 │ setuptools 65.5.0│ LOW │ 7.5 │ 0.1% │ ReDoS in package metadata parser; │ No breaking changes in patch │ pip install setuptools>=65.5.1 │
│ │ │ → 65.5.1 │ │ │ │ not reachable at app runtime │ release │ │
╰───┴──────────────────────┴──────────────────┴──────┴──────┴───────┴───────────────────────────────────┴──────────────────────────────┴──────────────────────────────────╯
★ CISA KEV — CISA has confirmed this CVE is actively exploited in the wild.
Threat Intelligence
Before the LLM call, vulntriage fetches authoritative threat data from three public feeds and injects it into the prompt:
| Feed | What it provides | Rate limit |
|---|---|---|
| NVD REST API v2 | CVSS v3.1/v3.0/v2 base score per CVE | 5 req/30s free; 50 req/30s with NVD_API_KEY |
| CISA KEV catalog | Whether each CVE is actively exploited in the wild | Single request, no key needed |
| FIRST EPSS API | Exploitation probability percentage | Batch request, no key needed |
All three are cached at ~/.cache/vulntriage/ with a 24-hour TTL. The first scan pays the network cost; subsequent scans are instant.
NVD scores are authoritative. The NVD CVSS value always overrides whatever score the LLM returns.
Speeding up NVD fetches
Without an NVD API key, the tool pauses 6.1 seconds between CVE lookups to stay under the public rate limit. With a key, the pause drops to 0.7 seconds — significant for projects with many CVEs.
# Get a free key at https://nvd.nist.gov/developers/request-an-api-key
export NVD_API_KEY="your-key-here"
vulntriage scan
Offline mode
# Skip all three feeds; use whatever is in the local cache
vulntriage scan --offline
Use --offline in air-gapped environments or when deterministic scan time matters. The scan proceeds without threat intel if the cache is empty — CVSS, KEV, and EPSS fields are simply absent from the prompt.
Suppressing CVEs
Create a .vulnignore file in your project root to suppress CVEs your team has reviewed and accepted:
# Accepted — only reachable in development scripts, not at runtime
CVE-2022-40897
# Reviewed and accepted
CVE-2023-32681 Not reachable via our API surface — verified 2024-01-15
Lines starting with # are comments. Text after the CVE ID is treated as a reason and ignored by the tool. Suppressed CVEs are excluded before the LLM call and do not count toward the exit code.
Provider Selection
vulntriage supports four LLM backends. Use --provider to switch:
| Provider | API key env var | Install extra | Default model |
|---|---|---|---|
anthropic (default) |
ANTHROPIC_API_KEY |
— | claude-sonnet-4-6 |
openai |
OPENAI_API_KEY |
pip install 'vulntriage[openai]' |
gpt-4o-mini |
gemini |
GOOGLE_API_KEY |
pip install 'vulntriage[gemini]' |
gemini-2.0-flash |
ollama |
— | pip install 'vulntriage[ollama]' |
llama3.2 |
# Use Gemini (free tier at aistudio.google.com/apikey)
export GOOGLE_API_KEY="AIza..."
vulntriage scan --provider gemini
# Use Ollama — fully local, no dependency data leaves your machine
vulntriage scan --provider ollama
# Use a specific model
vulntriage scan --provider ollama --model phi4-mini
Privacy note: All providers except Ollama send your dependency names to an external API. If your dependency list is sensitive, use --provider ollama.
Ollama quickstart
brew install ollama
ollama pull llama3.2
pip install 'vulntriage[ollama]'
vulntriage scan --provider ollama
By default Ollama connects to http://localhost:11434. Override with OLLAMA_HOST. If the Ollama server is not running, vulntriage will start it automatically.
CI Integration
vulntriage scan exits 1 if any CVE is ranked at or above --fail-on (default: none, meaning the scan always exits 0 unless you set a threshold), and 0 otherwise.
GitHub Actions
- name: Audit CVEs
env:
ANTHROPIC_API_KEY: ${{ secrets.ANTHROPIC_API_KEY }}
NVD_API_KEY: ${{ secrets.NVD_API_KEY }} # optional but speeds up NVD lookups
run: |
pip install pip-audit vulntriage
vulntriage scan --fail-on HIGH
Gate on CRITICAL only:
vulntriage scan --fail-on CRITICAL
Save a report as a CI artifact:
vulntriage scan --output-dir ./reports --format json
GitLab CI
audit:
script:
- pip install pip-audit vulntriage
- vulntriage scan --fail-on HIGH
variables:
ANTHROPIC_API_KEY: $ANTHROPIC_API_KEY
NVD_API_KEY: $NVD_API_KEY
How it works
- Runs
pip-audit --format jsonas a subprocess - Reads
requirements.txtorpyproject.tomlto understand your actual stack - Loads
.vulnignoreand removes suppressed CVEs - Fetches threat intelligence from NVD, CISA KEV, and EPSS (skipped with
--offline; all three cached 24h at~/.cache/vulntriage/) - Sends the enriched CVE list and stack context to the configured LLM
- NVD CVSS overrides any score the LLM returns
- Renders a ranked Rich table or JSON output
- Exits 1 if any CVE is at or above
--fail-onseverity
LLM reasoning example:
"requests is a direct dependency called at every API boundary — HIGH (SSRF via proxied requests). setuptools is not reachable at application runtime — LOW despite CVSS 7.5."
Cost
Each scan makes one LLM API call. At claude-sonnet-4-6 pricing (~$3/M input, $15/M output), a typical scan with 5–10 CVEs costs roughly $0.004–0.01. The static system prompt is cached across repeat scans (Anthropic 5-min TTL), cutting cost on subsequent runs by ~80%.
Scope
- pip only (no npm, cargo, etc.)
- Context from
requirements.txt/pyproject.toml— no static call-graph analysis - Threat intel cached at
~/.cache/vulntriage/with a 24-hour TTL
Development
git clone https://github.com/Nivish-21/Vuln
cd Vuln
python -m venv .venv && source .venv/bin/activate
pip install -e ".[dev]"
# Run tests
pytest
# Lint + format
black . && ruff check .
License
MIT
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file vulntriage-0.13.0.tar.gz.
File metadata
- Download URL: vulntriage-0.13.0.tar.gz
- Upload date:
- Size: 50.0 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.11.13
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
c25436af2c0223229d7a2607185abf515b8064ccfd5feb91018426349267f5e9
|
|
| MD5 |
bffda9d75b9cb069d6443ae987df984a
|
|
| BLAKE2b-256 |
81fa1e9a3f24de8c5ac93a5dadca1cfa1f81e1935f08640043c36051dc731fe6
|
File details
Details for the file vulntriage-0.13.0-py3-none-any.whl.
File metadata
- Download URL: vulntriage-0.13.0-py3-none-any.whl
- Upload date:
- Size: 34.4 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.11.13
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
b2c602a5a0a49d99b297a28a3032dd2e0551952db1f391357d8899ee19d20765
|
|
| MD5 |
57732b1dddfca32c76aac973e26253db
|
|
| BLAKE2b-256 |
f6c88beb88d205ecf99019a1e962d7a012863b16f4425e94e21b184cd9baab93
|
