Google instrumentum OSV-Scanner toolkit induxit ut vulnerabilitates in codice et applicationes incompositas reprimeret, ratione integra dependentium catenarum quae cum codice coniungitur. OSV-Scanner permittit te cognoscere condiciones ubi applicatio fit vulnerabilis propter difficultates in una bibliothecarum usu dependentiae. In hoc casu, bibliotheca vulnerabilis indirecte adhiberi potest, i.e. vocetur per aliam dependentiam. In codice exertus scriptum est Go et sub Apache 2.0 licentia distributa.
OSV-Scanner automatice recursively explorare potest directorium arboris, incepta et applicationes identificare coram directoriis git (notitiarum de vulnerabilitates per analysin hashes committendas determinatas), imaginum SBOM (Software Bill Of Material in SPDX et CycloneDX formats), manifestat vel involucrum involucrum actoribus ut Yarn, NPM, GEM, PIP et Cargo. Etiam confirmat intuens contenta Docker continentis imagines ex fasciculis e repositoriis Debian constructis.
Informationes de vulnerabilitates ex OSV (Open Source Vulnerabilities) datorum sumpta, quae informationes de quaestionibus securitatis in Crates.io (Rust), Ite, Maven, NPM (JavaScript), NuGet (C#), Packagist (PHP), PyPI (Python), RubyGems, Android, Debian et Alpina, necnon notitia de vulnerabilitate in nucleo Linux et informationes de vulnerabilitate relationum in inceptis in GitHub hosted. The database OSV reflecting the state of the problem fix, indicat committ with the appearance and correction of the vulnerability, the range of versions affected by vulnerability, links with the project repositorium cum codice, et notification about the problem. Provisum API te permittit indagare manifestationem vulnerabilium in ambitu commissorum et tags ac analysi susceptibilitatem productorum derivatorum et dependentiarum ad problema.
Source: opennet.ru