{"id":22915411,"url":"https://github.com/pandatix/js-cvss","last_synced_at":"2025-10-05T22:28:16.764Z","repository":{"id":210275182,"uuid":"726063155","full_name":"pandatix/js-cvss","owner":"pandatix","description":"Common Vulnerability Scoring System (CVSS) made its way to the JS ecosystem","archived":false,"fork":false,"pushed_at":"2024-12-12T11:05:45.000Z","size":186,"stargazers_count":5,"open_issues_count":0,"forks_count":3,"subscribers_count":2,"default_branch":"main","last_synced_at":"2024-12-12T12:20:44.511Z","etag":null,"topics":["cvss","cvssv4","javascript","jest","npm","typescript"],"latest_commit_sha":null,"homepage":"","language":"TypeScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/pandatix.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING","funding":null,"license":"LICENSE","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":"SECURITY.md","support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2023-12-01T13:07:15.000Z","updated_at":"2024-12-12T11:05:42.000Z","dependencies_parsed_at":"2023-12-18T22:35:28.457Z","dependency_job_id":"1cd15698-3e77-471f-9ea8-573efe784fc0","html_url":"https://github.com/pandatix/js-cvss","commit_stats":null,"previous_names":["pandatix/js-cvss"],"tags_count":13,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/pandatix%2Fjs-cvss","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/pandatix%2Fjs-cvss/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/pandatix%2Fjs-cvss/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/pandatix%2Fjs-cvss/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/pandatix","download_url":"https://codeload.github.com/pandatix/js-cvss/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":229669607,"owners_count":18104709,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["cvss","cvssv4","javascript","jest","npm","typescript"],"created_at":"2024-12-14T05:26:57.746Z","updated_at":"2025-10-05T22:28:11.711Z","avatar_url":"https://github.com/pandatix.png","language":"TypeScript","funding_links":[],"categories":[],"sub_categories":[],"readme":"\u003cdiv align=\"center\"\u003e\n\t\u003ch1\u003eJS-CVSS\u003c/h1\u003e\n    \u003ca href=\"https://www.npmjs.com/package/@pandatix/js-cvss\"\u003e\u003cimg src=\"https://img.shields.io/npm/dm/%40pandatix%2Fjs-cvss?style=for-the-badge\" alt=\"NPM\"\u003e\u003c/a\u003e\n\t\u003cbr\u003e\n\t\u003ca href=\"\"\u003e\u003cimg src=\"https://img.shields.io/github/license/pandatix/js-cvss?style=for-the-badge\" alt=\"License\"\u003e\u003c/a\u003e\n\t\u003ca href=\"https://github.com/pandatix/js-cvss/actions?query=workflow%3Aci+\"\u003e\u003cimg src=\"https://img.shields.io/github/actions/workflow/status/pandatix/js-cvss/ci.yaml?style=for-the-badge\u0026label=CI\" alt=\"CI\"\u003e\u003c/a\u003e\n\t\u003ca href=\"https://github.com/pandatix/js-cvss/actions/workflows/codeql-analysis.yaml\"\u003e\u003cimg src=\"https://img.shields.io/github/actions/workflow/status/pandatix/js-cvss/codeql-analysis.yaml?style=for-the-badge\u0026label=CodeQL\" alt=\"CodeQL\"\u003e\u003c/a\u003e\n\t\u003cbr\u003e\n\t\u003ca href=\"https://securityscorecards.dev/viewer/?uri=github.com/pandatix/js-cvss\"\u003e\u003cimg src=\"https://img.shields.io/ossf-scorecard/github.com/pandatix/js-cvss?label=openssf%20scorecard\u0026style=for-the-badge\" alt=\"OpenSSF Scoreboard\"\u003e\u003c/a\u003e\n\u003c/div\u003e\n\njs-cvss is another Common Vulnerability Scoring System (CVSS) implementation, in TypeScript.\n\n\u003e **Note**\n\u003e\n\u003e Specified by [first.org](https://www.first.org/cvss/), the CVSS provides a way to capture the principal characteristics of a vulnerability and produce a numerical score reflecting its severity.\n\nIt currently supports :\n - [X] [CVSS 2.0](https://www.first.org/cvss/v2/guide)\n - [X] [CVSS 3.0](https://www.first.org/cvss/v3.0/specification-document)\n - [X] [CVSS 3.1](https://www.first.org/cvss/v3.1/specification-document)\n - [X] [CVSS 4.0](https://www.first.org/cvss/v4.0/specification-document)\n\n\u003e **Warning**\n\u003e\n\u003e It won't support CVSS v1.0, as despite it was a good CVSS start, it can't get vectorized, abbreviations and enumerations are not strongly specified, so the cohesion and interoperability can't be satisfied.\n\n## How to use\n\nFrom your project, you can add `@pandatix/js-cvss` to your NPM dependencies using the following.\n```bash\nnpm install '@pandatix/js-cvss' -D\n```\n\nThen, from your code, import what you need (let's say `CVSS40``) and go on !\n\n```ts\nimport { CVSS40 } from '@pandatix/js-cvss';\n\n...\n\nlet vec = CVSS40('CVSS:4.0/AV:A/AC:H/AT:P/PR:L/UI:P/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L');\nconsole.log(vec.Score());\n```\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fpandatix%2Fjs-cvss","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fpandatix%2Fjs-cvss","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fpandatix%2Fjs-cvss/lists"}