Workflow

Nvdlib

Latest version: v0.7.7

Safety actively analyzes 688634 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

Page 1 of 3

0.7.7

-------------------
**Bugfixes**
- Fix cwe attr in CVE by jobselko in https://github.com/vehemont/nvdlib/pull/39

**Enhancements**
- Added CPE Match String API with `nvdlib.searchCPEmatch`, check out the documentation at https://nvdlib.com/en/latest/v2/CPEv2.html#cpe-match-criteria-api and more information can be found at the NVD API documentation page: https://nvd.nist.gov/developers/products

Thanks to jobselko for submitting a PR to resolve the cwe bug.

0.7.6

-------------------
**Bugfixes**
- Merged 35. Fixed a CPE search not pulling all CPE matches.

**Enhancements**
- Merged 34. Added additional vars for CVEs for easy accessability.
- Still working on 32 for supporting type hints, but some have been added.

Thanks to akuster for submitting a PR for these changes.

0.7.5

-------------------
**Bugfixes**
- Merged 30. Added a check if the generator hits 403 rate limit error, instead of breaking the entire generator. Delays twice as long to ensure another 403 isn't hit.

0.7.4

-------------------

**Enhancements**
- Merged 24. Added the new functions for `searchCVE_V2` and `searchCPE_V2`. They have the same arguments as their respective counterparts (`searchCVE` and `searchCPE`), but are defined as a generator instead. Yields after each CVE conversion from the response. This is useful for systems with resource constraints.

nthunk single handedly pushed these features. Thank you.

0.7.3

-------------------

**Bugfixes**

- Merged 22. When using a datetime object in parameters like `pubEndDate`, NVDLib will now replace the `+` character used to denote the time zone with `%2B` in the string of parameters, preventing a 404 error and per the NVD API documentation. Normally this is done automatically within requests, but NVDLib passes the parameters as a string rather than a dictionary natively within requests.

**Enhancements**
- Merged 23. Set the optional parameters in `searchCVE` and `searchCPE` to `None` instead of `False`. Helps out with linters and type assignment mismatches.

Big thanks to ntnunk for submitting the PRs for these changes.

0.7.2

-------------------
**Bugfixes**

- Fixed parsing of CPEs names to allow special characters with CPE names to function correctly.
- Fixed PyTest data, tests are passing now.

**Enhancements**

- Added newer parameters to `nvdlib.searchCVE()`.
- noRejected - Filter out CVEs that have a status of rejected.
- versionEnd / versionEndType / versionStart / versionStartType - Used with virtualMatchString to provide filters based on versions within CPE names

Page 1 of 3

Links

Releases

Has known vulnerabilities

Next

© 2024 Safety CLI Cybersecurity Inc. All Rights Reserved.