{"id":27890211,"url":"https://github.com/tibcosoftware/vulnrep","last_synced_at":"2025-05-05T10:45:20.281Z","repository":{"id":64303518,"uuid":"209930468","full_name":"TIBCOSoftware/vulnrep","owner":"TIBCOSoftware","description":"Vulnerability Report Library for parsing and conversion of software vulnerability formats, including CVRF and CSAF","archived":false,"fork":false,"pushed_at":"2020-02-22T01:53:53.000Z","size":124,"stargazers_count":5,"open_issues_count":0,"forks_count":2,"subscribers_count":6,"default_branch":"master","last_synced_at":"2024-06-21T02:05:21.402Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"bsd-3-clause","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/TIBCOSoftware.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2019-09-21T05:31:48.000Z","updated_at":"2023-02-14T12:16:32.000Z","dependencies_parsed_at":"2023-01-15T10:01:03.135Z","dependency_job_id":null,"html_url":"https://github.com/TIBCOSoftware/vulnrep","commit_stats":null,"previous_names":[],"tags_count":1,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/TIBCOSoftware%2Fvulnrep","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/TIBCOSoftware%2Fvulnrep/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/TIBCOSoftware%2Fvulnrep/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/TIBCOSoftware%2Fvulnrep/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/TIBCOSoftware","download_url":"https://codeload.github.com/TIBCOSoftware/vulnrep/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":252485576,"owners_count":21755817,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2025-05-05T10:45:19.181Z","updated_at":"2025-05-05T10:45:20.274Z","avatar_url":"https://github.com/TIBCOSoftware.png","language":"Go","funding_links":[],"categories":[],"sub_categories":[],"readme":"# vulnrep\n\nVulnerability Reporting Library implements Go APIs and command line tooling for\nparsing and exporting CVRF and CSAF vulnerability report representations.\n\n## Overview\n\nThe OASIS [Common Security Advisory Framework](https://www.oasis-open.org/committees/tc_home.php?wg_abbrev=csaf)\nTechnical Committee specified a XML-based format for sharing information about software\nvulnerabilities. OASIS published version 1.2 of that specification - the Common\nVulnerability Reporting Format (CVRF) - on the committee's home\n[page](https://www.oasis-open.org/committees/tc_home.php?wg_abbrev=csaf#technical).\nThat committee also works on a newer JSON format.\n\nThis project - the Vulnerability Reporting Library - aims to:\n\n* provide GO APIs to work with vulnerability information\n* validate the feasibility and correctness of the new JSON-focused specification\n* identify and eliminate issues with mapping to/from the existing XML format\n  and the new JSON representation\n\n## Contributing\n\nTo run test cases - which perform schema validation against the CSAF proposed schemas,\nappropriate files must first be downloaded - \"prepped\". This works this way so that the\nschema files themselves are not folded into this project, and not up-to-date with\nthe latest working copies. Perform:\n\n`go run cmd/prep/prep.go`\n\nBefore submitting a pull request, please raise an issue to discuss the change.\nContributors may be asked to sign a contributors license agreement.\nPull requests must pass a minimal filter:\n\n* No issues flagged with golangci-lint run\n* Appropriate test cases - if the pull request fixes a bug, then please provide\n  a test case demonstrating the bug\n* Appropriate comments\n\n### Hints\n\nThe enums.go file is generated with the help of the code in cmd/genenums.\nPlease don't edit this file directly, but instead edit the enums.json file,\nthen run \"go generate\".\n\n## License\n\nNote that this project uses [SPDX](https://spdx.org) to annotate source files\nwith license information.\n\nBSD-3-Clause\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ftibcosoftware%2Fvulnrep","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Ftibcosoftware%2Fvulnrep","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ftibcosoftware%2Fvulnrep/lists"}