mirror of https://github.com/fleetdm/fleet synced 2026-05-22 00:18:27 +00:00

Lucas Manuel Rodriguez cf64d85deb

Add visual studio extensions to software inventory (#17501 )

#17003

- [X] Changes file added for user-visible changes in `changes/` or
`orbit/changes/`.
See [Changes
files](https://fleetdm.com/docs/contributing/committing-changes#changes-files)
for more information.
- [X] Added support on fleet's osquery simulator `cmd/osquery-perf` for
new osquery data ingestion features.
- [x] Added/updated tests
- [X] Manual QA for all new/changed functionality

2024-03-14 16:33:12 -03:00

1 KiB

Raw Blame History

Testing CPE Translations

To improve accuracy when mapping software to CVEs, we can add data to cpe_translations.json which will get picked up by the NVD repo.

To test these changes locally, you can:

make the appropriate changes to cpe_translations

host this file on a local web server

go run ./tools/file-server/main.go 8082 ./server/vulnerabilities/nvd/

(re)launch your local fleet server with one of the following

Config method

vulnerabilities:
cpe_translations_url: "http://localhost:8082/cpe_translations.json"

Environment method

FLEET_VULNERABILITIES_CPE_TRANSLATIONS_URL="http://localhost:8082/cpe_translations.json" ./build/fleet serve --dev --dev_license --logging_debug

trigger a vulnerabilities scan

fleetctl trigger --name vulnerabilities

1 KiB Raw Blame History

Testing CPE Translations

1 KiB

Raw Blame History