Release CVE Binary Tool 3.0.pre1 · intel/cve-bin-tool

Pre-release for what will hopefully be 3.0. The release notes below are auto-generated by github and it looks like it went a bit too far back in its comparison, but I'm sharing it so everyone can see what the auto-generated output looks like.

What's Changed

remove unnecessary print debug statement (fixes #260) by @terriko in #264
Enable ffmpeg signature check (fixes #257) by @terriko in #265
Updated link for "List of currently available checkers" by @Purvanshsingh in #278
Github actions experiments by @terriko in #279
Bug #1 fix based on pdxjohnny's new nvd code by @terriko in #277
Fix openssh version not found issue, improve version error handling. by @terriko in #275
Unify Logging by @PrajwalM2212 in #276
Add ffmpeg tests by @sbs2001 in #283
string confusion solved by @Purvanshsingh in #284
Reintroduce quiet mode by @PrajwalM2212 in #290
Add icu file test by @PrajwalM2212 in #293
Set default log level by @PrajwalM2212 in #294
test_nss_rpm_3_26_2 needs replacement #295 solution by @k-udupa2000 in #298
Update kerberos checker to say kerberos5 since nvd has changed by @terriko in #302
Revert "Update kerberos checker to say kerberos5 since nvd has change… by @terriko in #303
Disable kerberos tests temporarily due to #301 by @terriko in #304
Remove 2.7 from supported versions by @terriko in #299
Speed testing LONG_TESTS on GitHub Actions by @terriko in #308
sync cache and database update by @PrajwalM2212 in #309
gnutls file test added for version 2.3.11 by @SinghHrmn in #311
Use sys.stout.encoding instead of utf-8 Fixes #258 by @terriko in #316
Checkers printing twice solved by @SinghHrmn in #318
Improve kerberos checker (fixes #301) by @terriko in #313
Improve icu checker. fixes #305 by @terriko in #315
update checkers example for cvedb by @terriko in #319
Clean up unused and broken tests. by @terriko in #323
Add test for skips flag by @PrajwalM2212 in #327
Fix final_log to check only the skip line by @terriko in #330
Make build status badge link to /actions page by @terriko in #333
Mention csv2cve earlier in the readme by @terriko in #335
Test for update flag by @PrajwalM2212 in #328
Added Bluez Binary tests by @SinghHrmn in #339
Test some overly long version strings by @terriko in #337
Minor improvements to csv2cve tests by @terriko in #336
Support runs option by @PrajwalM2212 in #338
Mark the json schema test as a long test (because it really is) by @terriko in #341
Fix deprecation warning in test_csv2cve by @shreyamalviya in #343
Updated regex_find in utils.py and all the checkers using it by @SinghHrmn in #331
Systemd checker improvements by @terriko in #344
Output filename when warning about version UNKNOWN by @SaurabhK122 in #348
Added filename in UNKNOWN version warning by @param211 in #347
Add version option by @PrajwalM2212 in #350
Add additional version-finding advice for writing checkers by @terriko in #355
Added Python checker by @SinghHrmn in #353
Add Berkeleydb checker (Fixes #28) by @terriko in #219
Test for version unknown warning message by @terriko in #351
Added unittest for package: sqlite3 and version: 3.30.1 by @Niraj-Kamdar in #356
Added test for openssl-1.1.1d by @param211 in #358
Enable test_sample_csv by @terriko in #359
Add python 3.8.2 rpm test by @terriko in #360
Improve help text by @terriko in #362
Make quiet mode actually quiet by @terriko in #363
Test on windows in github actions by @terriko in #365
Remove separate run of helper file test_definitions.py by @terriko in #371
test: Rename test_definitions to utils by @pdxjohnny in #373
Use pytest parametrize by @PrajwalM2212 in #366
added pytest to requirements.txt by @abhaykatheria in #379
Unify strings formatting by @SinghHrmn in #375
Update required python version to be 3.6+ by @terriko in #381
Fix failing long tests by @PrajwalM2212 in #378
Update documentation in preparation for 1.0 release by @ananthan-123 in #367
Update cvedb.py by @SaurabhK122 in #393
Update curl.py to fix the bug represented in the Issue #385 by @bigbird555 in #395
Remove double-bracket by @terriko in #404
icu documentation updated. by @ananthan-123 in #401
Fixes #384 by @SaurabhK122 in #406
Update curl.py by @bigbird555 in #407
Add checker vs filename test function by @terriko in #387
Fix filename check in Python by @SinghHrmn in #396
Update manual.md by @ananthan-123 in #415
fixed "package" instead of "product" for csv2cve. by @ananthan-123 in #416
Unified output by @SinghHrmn in #410
Update documentation. by @ananthan-123 in #420
fixed:nvd data mismatch results in critical error by @ananthan-123 in #421
Add filename checker tests for openssh & fix filename check ordering by @hur in #422
Fix Version not found error by @PrajwalM2212 in #431
Add basic json output by @mariuszskon in #418
Move version file to the package by @PrajwalM2212 in #440
Added Bluez file test. Also Updated checker. by @SinghHrmn in #437
Revert "Added Bluez file test. Also Updated checker." by @terriko in #441
Make bluez checker work for "contains" by @terriko in #442
Update python.py by @SaurabhK122 in #446
JSON out_file formatted by @SinghHrmn in #448
Add -v to pytest so we can see the list of tests run by @terriko in #450
Added ".idea" and "/venv/" by @param211 in #459
Add contains functionality in gnults.py by @SaurabhK122 in #456
Use the -o flag to specify the filename by @mariuszskon in #425
Add test for output_csv in OutputEngine by @mariuszskon in #458
Make openssh checker work for "contains" by @param211 in #453
Fixed:Broken checkers cause CI to hang indefinitely by @ananthan-123 in #462
wrong test file name in README.md by @utkarsh261 in #469
Add new checker for bzip2 by @SaurabhK122 in #468
Add test using real files for gnutls by @SaurabhK122 in #484
several optimization in cvedb and csv2cve files and fixes issue #413 by @Niraj-Kamdar in #477
Add test using real files for openssh by @SaurabhK122 in #482
Fix usage of subprocess in extractor.py by @Niraj-Kamdar in #479
add gstreamer checker by @Niraj-Kamdar in #491
add binutils checker by @Niraj-Kamdar in #494
Add ncurses checker by @param211 in #466
Added codecov to Github Actions file by @Niraj-Kamdar in #487
ci: Use checkout action v2 by @pdxjohnny in #500
Allow codecov to fail without blocking CI by @terriko in #507
Changed Version argument from -v to -V by @ableabhinav in #502
Add hostapd checker by @SaurabhK122 in #506
Add test using real files for bzip2 by @SaurabhK122 in #504
Add strongswan checker by @SaurabhK122 in #501
fix test_skips, test_runs and test_unknown in test_cli.py are not working on windows by @Niraj-Kamdar in #480
Add checker for rsyslog by @SaurabhK122 in #508
Add nginx checker by @param211 in #516
Add syslog-ng checker by @param211 in #517
Add varnish checker by @param211 in #518
Add test using real files for zlib by @SaurabhK122 in #531
Add curl filename checker test by @AkechiShiro in #539
fix test_scanner accidentally storing previous cves by @Niraj-Kamdar in #510
modify syslog-ng real binary url by @param211 in #543
Disable zlib 1.2.8 ubuntu test which is failing by @terriko in #545
Add test using real files for tiff by @SaurabhK122 in #512
Console Output Updated : (Safety like output) by @SinghHrmn in #530
Updated Readme.md and CSV2CVE.md by @SinghHrmn in #555
Add test using real files for expat by @SaurabhK122 in #511
Add test using real files for xml2 by @SaurabhK122 in #515
Add checker for wireshark by @SaurabhK122 in #513
Add checker for postgresql by @SaurabhK122 in #527
Add checker for cups by @SaurabhK122 in #529
Add test using real files for libgcrypt by @SaurabhK122 in #540
Add test using real files for png by @SaurabhK122 in #533
Add test using real files for sqlite by @SaurabhK122 in #549
Add test using real files for python by @SaurabhK122 in #550
add nessus checker by @param211 in #523
test: Temporarly remove node filetest by @pdxjohnny in #559
Fixe download link for varnish filetest by @SaurabhK122 in #563
tests: nss filetests for fedora by @SaurabhK122 in #557
Fixed Binutils.py showing fasle positives by @SinghHrmn in #565
Fix Node Download link by @SinghHrmn in #564
Add curl 7.65.0 signature & mapping test by @AkechiShiro in #544
Added tests for python2.7, since a lot of projects still use this version by @ableabhinav in #548
Version package data fix by @pdxjohnny in #570
Add lighttpd checker by @param211 in #514
Better console conventions - decouple console format logic from output formatting, ensure stdout is for output only by @mariuszskon in #473
flatten output of json and refactored output engine code by @Niraj-Kamdar in #551
Fix lighttpd filename by @terriko in #574
Added CVE Bin tool to the Console output by @nitishsaini706 in #571
fixed test_string, test_extract and test_checker on Windows by @Niraj-Kamdar in #535
Temporarily disable failing tests by @terriko in #579
Fixes ffmpeg link for ubuntu and added lighttpd for suse by @Niraj-Kamdar in #582
Remove codecov checks from short tests by @terriko in #578
Fix: only run longtests when new checkers get added by @Niraj-Kamdar in #581
Add checker for openswan by @SaurabhK122 in #583
Fix syslog-ng longtest by @Niraj-Kamdar in #587
Up long tests timeout to 45 min (from 30) by @terriko in #592
CSV2CVE now uses OutputEngine To generate output by @SinghHrmn in #561
updated csv2cve documentation by @SinghHrmn in #593
Improve handling if LONG_TESTS not set by @terriko in #591
updated links for failing tests by @SinghHrmn in #600
improved_coverage for output_engine by @SinghHrmn in #603
Fix syslog-ng file test by @SaurabhK122 in #602
updated banner by @SinghHrmn in #604
improved coverage for varnish by @SinghHrmn in #601
improved coverage for python by @SinghHrmn in #599
improved Coverage for gnutls by @SinghHrmn in #598
Improved coverage for bzip2 by @SinghHrmn in #597
fix zlib and lighttpd long tests by @Niraj-Kamdar in #595
update manual.md by @Niraj-Kamdar in #612
Fix lighttpd file test by @SaurabhK122 in #611
Switch back to .cache/cve-bin-tool by @terriko in #609
add test for quiet mode by @Niraj-Kamdar in #586
cvedb: Store NVD JSON files gzip compressed by @pdxjohnny in #637
Removed second lighttpd 1.4.54 test by @terriko in #639
Update documentation for 1.0 release by @terriko in #640
Improved coverage for libgcrypt by @SinghHrmn in #625
improved coverage for tiff by @SinghHrmn in #631
improved coverage for zlib by @SinghHrmn in #613
Improved Coverage for cups by @SinghHrmn in #614
test: ncurses filetest for centos and improved coverage by @SaurabhK122 in #618
improved coverage hostapd by @SinghHrmn in #621
Faster native solution for string parsing and removed parser for python2 by @Niraj-Kamdar in #649
remove string.c from the package. by @Niraj-Kamdar in #655
fix cli.py for new strings implementation by @Niraj-Kamdar in #658
Make checkers use object oriented paradigm by @Niraj-Kamdar in #656
Include pre-commit for black in contributor info by @terriko in #660
fix gnutls-serv and symlink error in windows by @Niraj-Kamdar in #664
Add checker for openvpn by @SaurabhK122 in #654
Added checkers to test_scanner by @aanchal-n in #588
Html report Stage 1 Task 1 ( Probabbly don't want to merge ) by @SinghHrmn in #670
Add checker for polarssl by @SaurabhK122 in #589
fixes many issues with extractor by @Niraj-Kamdar in #674
add egg updater script which fixes pytest initialization issue by @Niraj-Kamdar in #672
Reorganize tests by @SaurabhK122 in #675
Various improvements by @anthonyharrison in #653
Fix binutils false positives (fixes #677) by @terriko in #678
Add checker for openafs by @SaurabhK122 in #679
Add checker for busybox by @SaurabhK122 in #680
updated syslog-ng checker by @SinghHrmn in #682
Normalizing imports by @sakshatshinde in #683
Indented binutils binary file by @kritirikhi in #685
parallelize pytest to reduce testing time. by @Niraj-Kamdar in #687
Formatted outputengine for better code readibilty by @SinghHrmn in #688
Add checker for radare2 by @SaurabhK122 in #693
Add checker for dovecot by @SaurabhK122 in #691
Removed python2 import dependency from cli.py by @SinghHrmn in #690
Internationalized cve binary tool. by @ananthan-123 in #572
Improve test names for mapping/product detection by @terriko in #695
Add additional command line parameters to CSV2CVE (#689) by @anthonyharrison in #699
Correct report time (#700) by @anthonyharrison in #701
Corrected the generate_filename function by @kritirikhi in #706
Divided Report in samller components and updated the output_html function by @SinghHrmn in #704
Split cli.py into cli.py and scanner.py by @Niraj-Kamdar in #696
Removed Python2 dependency from sqlite by @SinghHrmn in #718
checkers: python: Remove print statement by @pdxjohnny in #725
Add checker for gimp by @SaurabhK122 in #726
Updated Cvedb.py to store summary data by @SinghHrmn in #705
Add checker for bash by @SaurabhK122 in #728
Add checker for freeradius by @SaurabhK122 in #724
Add filtering on CVE severity and CVSS score (#730) by @anthonyharrison in #731
Asynchronous extractor module by @Niraj-Kamdar in #741
Remove compiler dependency: added new mapping test data format by @Niraj-Kamdar in #716
Group documentation in doc/ directory by @terriko in #743
Check for the latest version before scanning. by @SinghHrmn in #719
Added asynchronous strings and improved extractor by @Niraj-Kamdar in #746
Add checker for haproxy by @SaurabhK122 in #747
Add checker for libvirt by @SaurabhK122 in #748
Remove old travis config by @terriko in #744
Add checker for icecast by @SaurabhK122 in #749
Added support for HTML reports by @SinghHrmn in #742
Updated Latest Checkers added and their Test data by @SinghHrmn in #753
Add checker for irssi by @SaurabhK122 in #755
Add checker for memcached by @SaurabhK122 in #756
Added Support for Coloured Console Output by @SinghHrmn in #754
Asynchronous File module added by @Niraj-Kamdar in #751
Fix test to verify cpio command success by @Niraj-Kamdar in #767
package and module now uses Product as their name. by @SinghHrmn in #759
Added asynchronous cvedb module. by @Niraj-Kamdar in #758
Removed from future import print by @imsahil007 in #763
Added Vendor in Console, CSV and JSON output by @SinghHrmn in #765
parallelize test_json by @Niraj-Kamdar in #772
Add checker for avahi by @SaurabhK122 in #774
Skip invalid files without halting scan (Fixes #651) by @terriko in #760
Added Input Engine with triage functionality by @Niraj-Kamdar in #777
Full specific path to the file by @SinghHrmn in #791
Add checker for glibc by @imsahil007 in #782
Add checker for bind by @SaurabhK122 in #784
Add checker for libarchive by @SaurabhK122 in #785
Fix problem with escape sequence in strings of test_false_positive function. by @Niraj-Kamdar in #795
Contains strings by default include version strings by @Niraj-Kamdar in #794
remove legacy_windows console option by @Niraj-Kamdar in #797
remove glibc from false positive string list since we now have checker for that. by @Niraj-Kamdar in #812
Add checker for samba by @SaurabhK122 in #775
Update out of tree checker by @SaurabhK122 in #773
Added unknown vendor, product case in cve_scanner by @Niraj-Kamdar in #801
several small improvements in cve_scanner by @Niraj-Kamdar in #811
improve false positive test failure message by @Niraj-Kamdar in #813
Update dev tree version to be 1.1 by @terriko in #817
[Part 1] Improved error handling with beautiful trace and exit code in cli, input_engine and cvedb by @Niraj-Kamdar in #798
Refactored Outputengine by @SinghHrmn in #790
Add checker for openldap by @SaurabhK122 in #815
OutputEngine: Fix generate_filename args signature by @Niraj-Kamdar in #829
cli: Allow user to update database with -u now option without having to specify directory and several small fixes by @Niraj-Kamdar in #837
OutputEngine: Modernize error handling by @Niraj-Kamdar in #828
Add mariadb checker by @imsahil007 in #835
Add checker for netpbm by @SaurabhK122 in #836
Run CI for 3.6 and 3.7 synchronously. by @Niraj-Kamdar in #841
Improved error handling and readability of extractor by @Niraj-Kamdar in #826
Update setup script dependencies and package data by @Niraj-Kamdar in #838
Added Support for custom theme in HTML Reports. by @SinghHrmn in #843
Added resizeGraph function to speed up the HTML Report by @SinghHrmn in #844
Input: comment and severity support by @Niraj-Kamdar in #827
Extractor: Added support for wheel and egg archive by @Niraj-Kamdar in #820
Fix openssl bug that is causing CI failure by @Niraj-Kamdar in #848
freeze requirements for rich to 4.0.0 by @Niraj-Kamdar in #851
Quiet Mode should not generate any output by @Niraj-Kamdar in #830
Add checker for tcpdump by @SaurabhK122 in #850
Updated the info msg in version checker by @SinghHrmn in #849
Add checker for qt by @SaurabhK122 in #842
Add mysql checker by @imsahil007 in #840
Added Config file support by @Niraj-Kamdar in #846
Add check for database schema and update if required (#805) by @anthonyharrison in #833
Added File Paths for product. Supported Output Formats -- CSV, JSON (soon HTML) by @SinghHrmn in #847
removed VERSION_PATTERNS from CONTAINS_PATTERNS by @imsahil007 in #858
Added path in HTML Report by @SinghHrmn in #861
Update Documentation for config and input engine by @Niraj-Kamdar in #857
Fixes path problem for InputEngine and reduce complexity of CVEScanner by @Niraj-Kamdar in #860
test_checker: remove unnecessary comments and use pytest instead of unittest by @Niraj-Kamdar in #863
CONTAINS_PATTERNS for glibc was common for all GNU programs by @imsahil007 in #869
linkify CVEs by @willmcgugan in #865
OutputEngine: filename generation bug fix by @Niraj-Kamdar in #871
CVEScanner: short circuit path updation logic if product already scanned. by @Niraj-Kamdar in #870
Docstring update for render_cves and group_cve_by_remark by @SinghHrmn in #872
Produce error if signature of cve_scanner change by @Niraj-Kamdar in #875
Documentation: Add how to guides by @Niraj-Kamdar in #864
Improved ErrorHandler and Migrated to Google style docstring. by @Niraj-Kamdar in #880
Added Print Mode by @SinghHrmn in #879
tests for checkers in checkers README by @imsahil007 in #878
update requirements and setup script by @Niraj-Kamdar in #884
Prepare docs for ReadTheDocs by @terriko in #886
Add read the docs config by @terriko in #887
Set index document to index instead of contents by @terriko in #888
Force requirements.txt for sphinx / readthedocs by @terriko in #889
CI: Cache database and python packages to improve speed by @Niraj-Kamdar in #885
Removed Unused imports by @SinghHrmn in #893
Remove unused imports and variables by @anthonyharrison in #882
Update filename reported for UNKNOWN library by @anthonyharrison in #898
Return sorted list of product, version tuples by @anthonyharrison in #900
Updated Example HTML report by @SinghHrmn in #892
Documentation: Offline usage guide by @anthonyharrison in #883
Added subversion checker by @imsahil007 in #866
add -e --exclude arument for excluding path by @imsahil007 in #876
Checkers documentation by @SaurabhK122 in #862
Added example yml to run CVE Binary Tool in github actions by @Niraj-Kamdar in #894
CVEDB: Fix bug in database location by @Niraj-Kamdar in #901
Print friendly Version of HTML report by @SinghHrmn in #895
Add how to doc on running multiple copies of cve-bin-tool by @terriko in #904
cvedb will scrap data now by @imsahil007 in #908
Change default for extraction from archives (#786) by @anthonyharrison in #907
Remove bluez checker by @imsahil007 in #914
Fixed link to user manual in README.md by @chaitanyamogal in #917
cvedb: Create aiohttp ClientSession with trust_env=True by @pdxjohnny in #923
Update URL for test data files (#921) by @anthonyharrison in #924
Add tests for CVSS and Severity options (#740) by @anthonyharrison in #919
Improve reporting of empty CVE database (#918) by @anthonyharrison in #928
update-README.md by @Rahul2044 in #931
Skipping CAB extract test in GitHub Actions by @terriko in #937
Version bump to 2.0a for upcoming 2.0 alpha release by @terriko in #938
CVEDB: Fix index and primary key by @Niraj-Kamdar in #902
new checker - gcc by @Rahul2044 in #926
Update Readme file by @imsahil007 in #935
Fix LGTM issues by @pdxjohnny in #934
Move indexing back to init for performance by @terriko in #942
Replace gimp test that is failing in GitHub Actions by @terriko in #943
Disable gimp osuosl test which is not working in Github Actions by @terriko in #949
Add gcc,gcc to vendor/product for gcc checker by @Wicked7000 in #944
Updated URL to issue page by @chaitanyamogal in #946
Typo fixed in README by @chaitanyamogal in #947
Fixed some typos in CONTRIBUTORS.md by @chaitanyamogal in #948
added gcc to available checker' list in the readme by @Rahul2044 in #945
update readthedocs -format checker list table by @imsahil007 in #950
fixed typo in MANUAL.md by @chaitanyamogal in #951
Update sphinx add --exclude and move -x to deprecated by @imsahil007 in #941
Remove erroneous log output (#952) by @anthonyharrison in #958
Small doc fixes in prepration for 2.0 by @terriko in #959
Pr 956 by @anthonyharrison in #961
Further details for offline environments (#955) by @anthonyharrison in #960
Add readthedocs documentation link in readme by @imsahil007 in #940
Move multiscan guide, tidy up indices in older documentation by @terriko in #963
Fixed Table in --input-file section on readthedocs by @chaitanyamogal in #969
2.0 Release notes by @terriko in #966
Improve new contributor documentation by @terriko in #968
Enable jinja2 autoescape by @terriko in #967
Include config file examples, fix linter issues by @terriko in #971
Update 2.0 release date by @terriko in #974
Fix typos in usernames by @terriko in #975
intradocument hyperlinks in docs/MANUAL.md updated by @imsahil007 in #983
Revert "Enable jinja2 autoescape" by @terriko in #989
New Github Actions environment variables by @terriko in #993
Update checkers tests Fix 404 links for failing long tests. by @imsahil007 in #996
update readme.md by @utkarsh147-del in #991
Update gimp test to use centos7 version by @terriko in #1003
Shorten compiler instructions/brotlipy error info for Windows users by @terriko in #1006
Update release notes, version for 2.1 by @terriko in #1011
Update tests previously using centos 6 or otheriwise out of date by @terriko in #1008
extractor: Native Python support for rpm files by @pdxjohnny in #995
Specify black version in pre-commit config by @terriko in #970
update 404 binary urls for long tests by @imsahil007 in #1015
Replace stale bash test from rpmfind.net by @terriko in #1016
Docs: info on where to start for your first commits by @terriko in #1017
Fixed typo by @chaitanyamogal in #1021
checkers: README: Add signature finding quickstart by @pdxjohnny in #1020
ci: Build docs by @pdxjohnny in #1025
Updated Samba checker test URL by @chaitanyamogal in #1029
fix typo in doc/CONTRIBUTORS.md by @peb-peb in #1028
update glibc odd behvaiour - files and version pattern by @imsahil007 in #1024
Update zlib checker version and contains pattern by @imsahil007 in #1022
add isort compatibility by @imsahil007 in #1033
add isort contributors guide and update readme by @imsahil007 in #1035
test: scanner: Cache archives by @pdxjohnny in #1036
Fix glibc.py SyntaxWarning by @imsahil007 in #1045
fix typo in checkers/README.md by @peb-peb in #1048
Skip gimp long tests elegantly in github actions by @imsahil007 in #1049
Add ReadTheDocs badge by @terriko in #1051
Test fails if any VENDOR_PRODUCT pair in checker is not lowercase by @chaitanyamogal in #1032
Fix all relative imports by @chaitanyamogal in #1057
Fix relative import in docs by @chaitanyamogal in #1065
New checker libxslt by @Rahul2044 in #986
added tests for libcurl by @peb-peb in #1067
Add WSL to doc by @param211 in #1066
New Checker Openjpeg checker by @chaitanyamogal in #1019
mysql version pattern bug by @imsahil007 in #1060
Improve error when component is not found in a longtest package by @terriko in #1055
Corrected/Improved some links in MANUAL.md and CONTRIBUTORS.md by @Romi-776 in #1069
Add directory to instructions, update master->main in badges/links by @terriko in #1070
Rename master to main in various docs by @pdxjohnny in #1071
adding type hints by @peb-peb in #1073
doc/conf.py & setup.py will use release no. from version.py by @imsahil007 in #1023
Added type hints by @peb-peb in #1080
Update requirements.txt minimum versions by @terriko in #1087
Add rate limiting to address #1081 by @nisamson in #1085
Added an if statement for Issue #953 by @alt-glitch in #1082
Fixed broken link in CONTRIBUTORS.md by @jerinjtitus in #1094
isort fixes with profile black by @imsahil007 in #1095
Limit aiohttp simultaneously opened connections to NVD by @imsahil007 in #1093
Temporary fix for ssl certificate error by @param211 in #1103
Add copyright/spdx license information header to all python files by @terriko in #1098
Fix OpenSSL version conversion by @param211 in #1086
Add dnsmasq Checker by @BreadGenie in #1076
Add checker for pspp by @BreadGenie in #1108
Updated a Link in README.md by @CabTheProgrammer in #1106
Add missing condensed downloads by @param211 in #1102
New checker: WebKitGTK by @param211 in #1101
added checker libsndfile by @peb-peb in #1097
Switch PDX url to https #1104 by @bhargavh in #1118
Added warning comments to checkers matching filename-based patterns by @jerinjtitus in #1089
Add color to latest version message by @bhargavh in #1119
Add p7zip checker by @bhargavh in #1120
Fix long tests in CI by @Molkree in #1133
Add ntp Checker by @BreadGenie in #1127
Introduce PDF output by @anthonyharrison in #1115
Add libsoup checker by @BreadGenie in #1136
Add condensed downloads test by @BreadGenie in #1131
No shebang by @CabTheProgrammer in #1142
Update cab extraction test (#936) by @bhargavh in #1122
Fix isort CI check by @Molkree in #1146
wpa_supplicant checker by @alt-glitch in #1134
GnuPG checker by @alt-glitch in #1130
Update JQuery to 3.6.0 by @BreadGenie in #1150
Add Libssh2 checker by @BreadGenie in #1137
Minor HTML report fixes by @BreadGenie in #1154
Fix systemd get_version() by @BreadGenie in #1156
Handle UNKNOWN severity in PDF reports by @BreadGenie in #1152
Add manual trigger for CI workflow by @Molkree in #1157
Generate CVE report when there no CVEs by @BreadGenie in #1160
Fix Python Checker by @masto-pn in #1161
CVE scan on cve-bin-tool's requirements and HTML report dependencies by @BreadGenie in #1113
Raise ratelimit user friendly and other network errors. #1109 by @bhargavh in #1117
Including score in the CVE Report by @jerinjtitus in #1077
Format files using isort and black by @BreadGenie in #1166
Python 2 cleanup by @Molkree in #1147
Included time of NVD data update in report by @jerinjtitus in #1088
Added HTML report test by @jerinjtitus in #1129
Add dpkg checker by @BreadGenie in #1170
Proper decoding of stdout in condensed download committed or not test by @BreadGenie in #1172
Fix Tests by @BreadGenie in #1175
Add parser for PyPI packages by @BreadGenie in #1165
Add logrotate Checker by @BreadGenie in #1184
Add support for python package checkers by @BreadGenie in #1171
added vendor-product pair finding process by @peb-peb in #1173
Add intermediate reports in cve binary tool to improve Triage by @imsahil007 in #1169
add documentation for intermediate reports by @imsahil007 in #1180
feat(package-list-parser): Ubuntu by @BreadGenie in #1183
Add docs for package list parsers by @BreadGenie in #1187
Try out Github's codeql analysis workflow by @terriko in #1179
Add ftp checker by @BreadGenie in #1186
Add SPDX headers (Fixes #1112) by @terriko in #1190
Remove CSV file and instead use VendorFetch by @BreadGenie in #1194
CVE report generation by @BreadGenie in #1163
Add Checker for bubblewrap by @BreadGenie in #1206
Add checker for accountsservice by @BreadGenie in #1205
Remove regex that was catching false positive versions in python checker by @BreadGenie in #1202
Helper Script - extraction and regex finding process by @peb-peb in #1182
Universal PyPI package checker by @BreadGenie in #1199
Re-enable jinja2 autoescape (fixes #988) by @terriko in #1191
Centos package list parser by @BreadGenie in #1203
Add checker for bolt by @BreadGenie in #1193
async utils: aio_run_command(): check returncode by @pdxjohnny in #1181
fix(tests): python and node long tests by @BreadGenie in #1215
quality: LGTM code quality alerts by @anthonyharrison in #1214
feat(checker): Add gpgme Checker by @BreadGenie in #1222
fix: icu checker by @peb-peb in #1208
feat(package-list-parser): dpkg and rpm package list parser support by @BreadGenie in #1209
feat(checker): Add enscript Checker by @BreadGenie in #1216
feat(checker): Add cryptsetup Checker by @BreadGenie in #1217
fix: Columns overrun in PDF Reports by @anthonyharrison in #1219
feat (cvedb): rollback cachedir if cvedb refresh fails by @imsahil007 in #1225
refactor: scan_file() in versionscanner.py by @peb-peb in #1226
fix: added "" around strings by @peb-peb in #1228
feat: Update MergeReport based HTML Report triage by @imsahil007 in #1204
feat: add rate limit for nvd downloads (from @param211) by @terriko in #1230
Version and year bump for 2.2 release. by @terriko in #1234
feat: Add CVSS Vector by @anthonyharrison in #1220
fix(security): add noreferer in target=_blank inside html reports by @imsahil007 in #1232
feat(package-list-parser): Add support for distros using pacman package manager by @BreadGenie in #1235
feat(checker): Add gupnp Checker by @BreadGenie in #1236
feat(checker): zsh checker by @peb-peb in #1240
feat(checker): Add kbd Checker by @BreadGenie in #1239
feat(checker): libbpg checker by @peb-peb in #1237
feat(checker): dbus checker by @peb-peb in #1241
feat(checker): libical checker by @peb-peb in #1243
feat: Add intermediate severity trace table in pdf report by @imsahil007 in #1245
feat(checker): liblas checker by @peb-peb in #1244
feat(checker): Add kexec-tools Checker by @BreadGenie in #1242
feat(checker): Add hunspell Checker by @BreadGenie in #1238
feat(checker): Add cronie Checker by @BreadGenie in #1221
refactor: Unify Checker list and test Checker list by @BreadGenie in #1224
fix(security): Bandit config and nosec flags for reviewed code by @terriko in #1249
fix(security): Improve SQL in version_signature.py by @terriko in #1248
fix: add update_egg function to test_checker by @terriko in #1252
fix: tests for test_helper_script by @peb-peb in #1255
docs: remove adding checker names for tests by @BreadGenie in #1256
test: change way pytest is run in CI by @terriko in #1251
refactor(scanner): scan strings without splitting the lines by @BreadGenie in #1227
fix: extract apk packages for alpine and android by @imsahil007 in #1258
feat(checker): Add sudo checker by @imsahil007 in #1259
Fix yaml and toml tests in test_config by @terriko in #1253
feat(checker): Add Lua Checker by @BreadGenie in #1257
feat(checker): Add mdadm Checker by @BreadGenie in #1261
feat(checker): Add mtr Checker by @BreadGenie in #1263
feat(checker): Add TrouSerS checker by @BreadGenie in #1266
feat: Add recommdended dev tools list by @terriko in #1212
feat(checker): Add gnome-shell checker by @BreadGenie in #1200
fix: rename development requirements file for Snyk by @terriko in #1272
fix: condensed downloads by @BreadGenie in #1274
refactor: helper script for is_executable() and parse_string() by @peb-peb in #1246
feat(checker): Add open-vm-tools Checker by @BreadGenie in #1275
feat(checker): Add nano Checker by @BreadGenie in #1277
feat(checker): Add pscs-lite Checker by @BreadGenie in #1280
feat(checker): Add poppler Checker by @BreadGenie in #1283
fix(cvedb): skip reject cve entries by @imsahil007 in #1282
feat: Add NVD CVE Retrieval API by @imsahil007 in #1218
fix: Too many SQL Variables by @anthonyharrison in #1279
fix: mark failing nvd test as skipped (for now) by @terriko in #1286
feat(checker): Add pigz Checker by @BreadGenie in #1288
fix: allow extractraction on all files to fail by @terriko in #1285
refactor: flake8 code cleanup by @Molkree in #1294
fix: systemd Checker by @BreadGenie in #1289
fix: fix datetime and status count tests for nvd_api by @imsahil007 in #1306
fix(scanner): crash when scanning a METADATA file w/o appropriate data by @BreadGenie in #1301
update: to latest stable version of black by @peb-peb in #1260
ci: add flake8 to CI by @Molkree in #1299
lint: remove unused BeautifulSoup import, fix black by @terriko in #1307
feat(checker): hdf5 checker by @peb-peb in #1297
feat(checker): Add sane-backends Checker by @BreadGenie in #1292
feat(checker): libvncserver checker by @peb-peb in #1296
feat(checkers): add pre-commit hook for reformatting checkers table by @imsahil007 in #1290
refactor(logger): Make logger less verbose by @BreadGenie in #1295
chore: Update dev version to 3.0.dev0 by @terriko in #1319
ci: autoupdate pre-commit config by @Molkree in #1302
Updated conf.py and requirements.txt by @P0intMaN in #1313
fix: mark failing nvd tests skip by @imsahil007 in #1321
test: add additional bad archive tests by @P0intMaN in #1322
refactor: bad archive file tests by @P0intMaN in #1328
feat: enable pre-commit format_checkers for CI by @imsahil007 in #1330
chore : Removed vestigial/no longer needed pylint disable directives by @GurpreetSarangal in #1327
fix(nvd_api): refactor nvd_api-cvedb and remove json cache by @imsahil007 in #1318
feat: recommending safe packages by @peb-peb in #1284
ci: Add python 3.9 for short tests by @terriko in #1334
feat(merge): Add filter for intermediate reports by @imsahil007 in #1262
refactor(windows_tests): Update Python 3.8 to 3.9 by @P0intMaN in #1338
feat(backports): Add output backport fixes for debian based distros by @BreadGenie in #1273
feat: improved output for helper-script by @peb-peb in #1333
fix(nvd_api): nvd_api fetch results over 2000 limit by @imsahil007 in #1345
docs: backport-fix by @BreadGenie in #1344
fix: group arguments in cli by @imsahil007 in #1340
Updated existing checkers using Helper Script by @peb-peb in #1189
test(extractor): refactor bad files by @Molkree in #1341
fix: change CONTAIN_PATTERNS to CONTAINS_PATTERNS by @Molkree in #1347
fix(pdf): resolve reportlab table style index bug by @imsahil007 in #1329
docs: add Python 3.9 classifier by @Molkree in #1355
fix: unbound output variable in version_scanner by @imsahil007 in #1356
chore: update pre-commit config by @github-actions in #1357
feat: Add spell-checker to Github Workflow by @P0intMaN in #1350
chore: change comment about not detecting backported fixes by @BreadGenie in #1365
refactor: Add tool version to console output by @anthonyharrison in #1376
feat: Add Python 3.10 support by @anthonyharrison in #1370
feat: Add PDF Tests by @anthonyharrison in #1361
feat: add SBOM support by @anthonyharrison in #1366
refactor(checker): merge libcurl and curl checker by @BreadGenie in #1364
feat: Add Available Fix Utility by @BreadGenie in #1363
chore: update pre-commit config by @github-actions in #1367
refactor: reduce logging output by @anthonyharrison in #1374
chore: bump black to 21.9b0 by @itsmais in #1389
doc: Add architecture diagram by @terriko in #1393
feat: report number of checkers by @anthonyharrison in #1391
feat: add CVE summary by @anthonyharrison in #1392
docs: fix Manual table of contents by @Molkree in #1397
refactor(nvd): switch default nvd api from json by @BreadGenie in #1394
feat(available-fix): Add Red Hat support by @BreadGenie in #1390
GitHub Actions How-To Guide by @alt-glitch in #1396
ci: automate keeping dev-requirements.txt and .pre-commit-config in sync by @Molkree in #1405
test: disable hanging nvd tests by @terriko in #1420
test: skip NVD API tests by @Molkree in #1421
docs: including suggest to install pdftext in Windows using conda by @marlonemmerich in #1395
refactor: type hints in available fix files by @Molkree in #1408
refactor(sbom): typing and try except constructions by @Molkree in #1409
Updated requirements.csv with valid vendors #1403 by @Shiv2708 in #1406
feat(package-list-parser): improve error messsages for unsupported distros by @BreadGenie in #1413
fix(test): switch --nvd option to JSON for broken long tests by @BreadGenie in #1425
fix: Unknown CVEs in output by @anthonyharrison in #1429
fix: Replace xml.etree.ElementTree with defusedxml.ElementTree by @anthonyharrison in #1430
fix: enable nvd_api tests and add modEndDate param by @imsahil007 in #1427
chore: Add # nosec comment for bandit by @terriko in #1401
refactor(package-list-parser): Make invalid packages log warning instead of throwing error by @BreadGenie in #1415
fix: bump binutils to v2.34-6ubuntu1.3 in package list parser test by @BreadGenie in #1434
fix: don't scan if vendor is "UNKNOWN" by @anthonyharrison in #1439
test: mark jsonschema tests as xfail by @terriko in #1441
CI: disable jsonschema tests due to NVD data errors by @terriko in #1442
refactor: encapsulate vendor fetch to CVEDB by @BreadGenie in #1417
chore: update JavaScript dependencies by @BreadGenie in #1432
fix(available-fix): Use affected_release for fixed status by @BreadGenie in #1445
fix!: Make error codes fit standard range by @terriko in #1423
fix: ensure canonical version numbers used in version comparison by @anthonyharrison in #1437

New Contributors

@Purvanshsingh made their first contribution in #278
@sbs2001 made their first contribution in #283
@k-udupa2000 made their first contribution in #298
@SinghHrmn made their first contribution in #311
@shreyamalviya made their first contribution in #343
@SaurabhK122 made their first contribution in #348
@param211 made their first contribution in #347
@Niraj-Kamdar made their first contribution in #356
@abhaykatheria made their first contribution in #379
@ananthan-123 made their first contribution in #367
@bigbird555 made their first contribution in #395
@hur made their first contribution in #422
@mariuszskon made their first contribution in #418
@utkarsh261 made their first contribution in #469
@ableabhinav made their first contribution in #502
@AkechiShiro made their first contribution in #539
@nitishsaini706 made their first contribution in #571
@aanchal-n made their first contribution in #588
@anthonyharrison made their first contribution in #653
@sakshatshinde made their first contribution in #683
@kritirikhi made their first contribution in #685
@imsahil007 made their first contribution in #763
@willmcgugan made their first contribution in #865
@chaitanyamogal made their first contribution in #917
@Rahul2044 made their first contribution in #931
@Wicked7000 made their first contribution in #944
@utkarsh147-del made their first contribution in #991
@peb-peb made their first contribution in #1028
@Romi-776 made their first contribution in #1069
@nisamson made their first contribution in #1085
@alt-glitch made their first contribution in #1082
@jerinjtitus made their first contribution in #1094
@BreadGenie made their first contribution in #1076
@CabTheProgrammer made their first contribution in #1106
@bhargavh made their first contribution in #1118
@Molkree made their first contribution in #1133
@masto-pn made their first contribution in #1161
@P0intMaN made their first contribution in #1313
@GurpreetSarangal made their first contribution in #1327
@github-actions made their first contribution in #1357
@itsmais made their first contribution in #1389
@marlonemmerich made their first contribution in #1395
@Shiv2708 made their first contribution in #1406

Full Changelog: 0.3.1...3.0.pre1

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

CVE Binary Tool 3.0.pre1

What's Changed

New Contributors

Contributors