https://github.com/threatcode/osv-schema
https://github.com/threatcode/osv-schema
Last synced: 6 months ago
JSON representation
- Host: GitHub
- URL: https://github.com/threatcode/osv-schema
- Owner: threatcode
- License: apache-2.0
- Created: 2023-03-23T16:22:59.000Z (about 3 years ago)
- Default Branch: main
- Last Pushed: 2024-11-14T21:21:04.000Z (over 1 year ago)
- Last Synced: 2025-04-04T22:43:55.229Z (12 months ago)
- Language: Python
- Homepage: https://threatcode.github.io/osv-schema/
- Size: 317 KB
- Stars: 0
- Watchers: 0
- Forks: 0
- Open Issues: 13
-
Metadata Files:
- Readme: README.md
- License: LICENSE
- Security: SECURITY.md
Awesome Lists containing this project
README
# Open Source Vulnerability Schema
This is the repository for the Open Source Vulnerability schema, which is currently exported by:
- [GitHub Security Advisories](https://github.com/github/advisory-database)
- [PyPI Advisory Database](https://github.com/pypa/advisory-database)
- [Go Vulnerability Database](https://github.com/golang/vulndb)
- [Rust Advisory Database](https://github.com/RustSec/advisory-db)
- [Global Security Database](https://github.com/cloudsecurityalliance/gsd-database)
- [OSS-Fuzz](https://github.com/google/oss-fuzz-vulns)
- [LoopBack Advisory Database](https://github.com/loopbackio/security/tree/main/advisories)
Together, these include vulnerabilities from:
- Android
- crates.io
- Debian GNU/Linux
- GitHub Actions
- Go
- Hex
- Linux kernel
- Maven
- npm
- NuGet
- OSS-Fuzz
- Packagist
- Pub
- PyPI
- RubyGems
These vulnerabilites are aggregated by https://osv.dev.
Reference tooling (e.g. converters) can be found in the [tools/](tools) directory
The current version of spec is rendered [here](https://ossf.github.io/osv-schema/).