mirror of
https://github.com/fleetdm/fleet
synced 2026-05-15 21:18:29 +00:00
46b0b7765b
* WIP * WIP * Make path optional and fix tests * Add first generate * Move to nvd package * remove replace * Re-add replace * It's path, not file name * Change how db path is set and use etag * Fix typos * Make db generation faster * Remove quotes * Doesn't like comments * Samitize etag and save to file * Refactor some things and improve writing of etagenv * Compress file and truncate amount of items for faster testing * Remove quotes * Try to improve performance * Ignore truncate error if not exists * Minor cleanup and make sqlite have cpe prefix * Simplify code and test sync * Add VCR for sync test * Check for nvdRelease nil * Add test for the actual translation * Address review comments * Rename generate command because we'll have a cve one too * Move to its own dir * Address review comments
40 lines
2.9 KiB
Go
40 lines
2.9 KiB
Go
package vulnerabilities
|
|
|
|
const XmlCPETestDict = `
|
|
<?xml version='1.0' encoding='UTF-8'?>
|
|
<cpe-list xmlns:config="http://scap.nist.gov/schema/configuration/0.1" xmlns="http://cpe.mitre.org/dictionary/2.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:scap-core="http://scap.nist.gov/schema/scap-core/0.3" xmlns:cpe-23="http://scap.nist.gov/schema/cpe-extension/2.3" xmlns:ns6="http://scap.nist.gov/schema/scap-core/0.1" xmlns:meta="http://scap.nist.gov/schema/cpe-dictionary-metadata/0.2" xsi:schemaLocation="http://scap.nist.gov/schema/cpe-extension/2.3 https://scap.nist.gov/schema/cpe/2.3/cpe-dictionary-extension_2.3.xsd http://cpe.mitre.org/dictionary/2.0 https://scap.nist.gov/schema/cpe/2.3/cpe-dictionary_2.3.xsd http://scap.nist.gov/schema/cpe-dictionary-metadata/0.2 https://scap.nist.gov/schema/cpe/2.1/cpe-dictionary-metadata_0.2.xsd http://scap.nist.gov/schema/scap-core/0.3 https://scap.nist.gov/schema/nvd/scap-core_0.3.xsd http://scap.nist.gov/schema/configuration/0.1 https://scap.nist.gov/schema/nvd/configuration_0.1.xsd http://scap.nist.gov/schema/scap-core/0.1 https://scap.nist.gov/schema/nvd/scap-core_0.1.xsd">
|
|
<generator>
|
|
<product_name>National Vulnerability Database (NVD)</product_name>
|
|
<product_version>4.6</product_version>
|
|
<schema_version>2.3</schema_version>
|
|
<timestamp>2021-07-20T03:50:36.509Z</timestamp>
|
|
</generator>
|
|
<cpe-item name="cpe:/a:vendor:product:1.2.3:~~~macos~~">
|
|
<title xml:lang="en-US">Vendor Product 1.2.3 for MacOS</title>
|
|
<references>
|
|
<reference href="https://someurl.com">Change Log</reference>
|
|
</references>
|
|
<cpe-23:cpe23-item name="cpe:2.3:a:vendor:product:1.2.3:*:*:*:*:macos:*:*"/>
|
|
</cpe-item>
|
|
<cpe-item name="cpe:/a:vendor2:product2:0.3:~~~macos~~" deprecated="true" deprecation_date="2021-06-10T15:28:05.490Z">
|
|
<title xml:lang="en-US">Vendor2 Product2 0.3 for MacOS</title>
|
|
<cpe-23:cpe23-item name="cpe:2.3:a:vendor2:product2:0.3:*:*:*:*:macos:*:*">
|
|
<cpe-23:deprecation date="2021-06-10T11:28:05.490-04:00">
|
|
<cpe-23:deprecated-by name="cpe:2.3:a:vendor2:product3:1.2:*:*:*:*:macos:*:*" type="NAME_CORRECTION"/>
|
|
</cpe-23:deprecation>
|
|
</cpe-23:cpe23-item>
|
|
</cpe-item>
|
|
<cpe-item name="cpe:/a:vendor2:product3:1.2:~~~macos~~" deprecated="true" deprecation_date="2021-06-10T15:28:05.490Z">
|
|
<title xml:lang="en-US">Vendor2 Product3 1.2 for MacOS</title>
|
|
<cpe-23:cpe23-item name="cpe:2.3:a:vendor2:product3:1.2:*:*:*:*:macos:*:*">
|
|
<cpe-23:deprecation date="2021-06-10T11:28:05.490-04:00">
|
|
<cpe-23:deprecated-by name="cpe:2.3:a:vendor2:product4:999:*:*:*:*:macos:*:*" type="NAME_CORRECTION"/>
|
|
</cpe-23:deprecation>
|
|
</cpe-23:cpe23-item>
|
|
</cpe-item>
|
|
<cpe-item name="cpe:/a:vendor2:product4:999">
|
|
<title xml:lang="en-US">Vendor2 Product4 999 for MacOS</title>
|
|
<cpe-23:cpe23-item name="cpe:2.3:a:vendor2:product4:999:*:*:*:*:macos:*:*"/>
|
|
</cpe-item>
|
|
</cpe-list>
|
|
`
|