Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.0, purl, and vers.
96
stars
22
forks
source link
npm use cvss attribute if present to extract the score #93
Closed
prabhu closed 9 months ago
With this fix, we get the correct cvss score returned for certain packages instead of the default 5.0.