Skip to content
/ vulnerablecode-purl2cpe Public
forked from pombredanne/purl2cpe

This repo contains a dump of mappings of NVD's CPEs to purls (package URLs) derived from the VulnerableCode database. package urls created by using VulnerableCode's data. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ and nexB for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/discuss

github.com/nexb/vulnerablecode-purl2cpe
5 stars 5 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

aboutcode-org/vulnerablecode-purl2cpe

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
1999.json
1999.json
 
 
2000.json
2000.json
 
 
2001.json
2001.json
 
 
2002.json
2002.json
 
 
2003.json
2003.json
 
 
2004.json
2004.json
 
 
2005.json
2005.json
 
 
2006.json
2006.json
 
 
2007.json
2007.json
 
 
2008.json
2008.json
 
 
2009.json
2009.json
 
 
2010.json
2010.json
 
 
2011.json
2011.json
 
 
2012.json
2012.json
 
 
2013.json
2013.json
 
 
2014.json
2014.json
 
 
2015.json
2015.json
 
 
2016.json
2016.json
 
 
2017.json
2017.json
 
 
2018.json
2018.json
 
 
2019.json
2019.json
 
 
2020.json
2020.json
 
 
2021.json
2021.json
 
 
2022.json
2022.json
 
 
AUTHORS.rst
AUTHORS.rst
 
 
CHANGELOG.rst
CHANGELOG.rst
 
 
CODE_OF_CONDUCT.rst
CODE_OF_CONDUCT.rst
 
 
NOTICE
NOTICE
 
 
README.rst
README.rst
 
 
cc-by-sa-4.0.LICENSE
cc-by-sa-4.0.LICENSE
 
 

Repository files navigation

VulnerableCode purl2cpe

Data License stability-wip Gitter chat

VulnerableCode purl2cpe is a dataset mapping purls and CPEs using VulnerableCode data graph.

How it's made?

On a live VulnerableCode instance, run:

./manage.py purl2cpe <target-directory>

License

Copyright (c) nexB Inc. and others. All rights reserved.

VulnerableCode is a trademark of nexB Inc.

SPDX-License-Identifier: CC-BY-SA-4.0

VulnerableCode data is licensed collectively under CC-BY-SA-4.0.

See https://www.apache.org/licenses/LICENSE-2.0 for the license text.

See https://creativecommons.org/licenses/by-sa/4.0/legalcode for the license text.

See https://github.com/aboutcode-org/vulnerablecode for support. See https://github.com/aboutcode-org/vulnerablecode-purl2cpe for download.

See https://aboutcode.org for more information about nexB OSS projects.

About

This repo contains a dump of mappings of NVD's CPEs to purls (package URLs) derived from the VulnerableCode database. package urls created by using VulnerableCode's data. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ and nexB for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/discuss

github.com/nexB/vulnerablecode-purl2cpe

Topics

vulnerability-databases cve cpe nvd vulnerability-identification security-tools purl vulnerability-database vulnerablecode

Resources

Readme
Activity
Custom properties

Stars

5 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published