Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/catalyst/patch-friend

Which of my hosts are affected by a security advisory?
https://github.com/catalyst/patch-friend

debian python security security-advisories ubuntu

Last synced: about 2 months ago
JSON representation

Which of my hosts are affected by a security advisory?

Awesome Lists containing this project

README

        

# Patch friend

This application consumes the machine readable feeds of security advisories from the [Debian](https://debian.org/) and [Ubuntu](https://ubuntu.com) projects, and stores them in a database.

It can also receive a feed of hosts and their installed packages from either a [Hostinfo](http://git.catalyst.net.nz/gw?p=hostinfo.git;a=summary) installation, or directly from [osquery](https://osquery.io/) on the hosts themselves.

These two sources of information are used to produce reports about which hosts are impacted by which security vulnerabilities.

This application is a work in progress :)

## Dependencies

### Python

python-apt isn't installable from pip (it has silent deps on things which are not in PyPi), so you may need to:

ln -s /usr/lib/python3/dist-packages/apt* $VIRTUAL_ENV/lib/python*/site-packages

And install python-apt in the host OS.

### Subversion

The "svn" tool is required for DSAs and DLAs.