[import] implement extraction of fix-commits from NVD feeds

SAP / project-kb

Home page of project "KB"

https://sap.github.io/project-kb/

Apache License 2.0

113 stars 73 forks source link

[import] implement extraction of fix-commits from NVD feeds #40

Open copernico opened 4 years ago

copernico commented 4 years ago

The NVD does contain fix-commits for some CVEs: extract them and represent them as statements.

copernico commented 4 years ago

For example, this paper collects 3750 vulnerabilities from NVD (note: for some reason they rely on crawling and scraping instead of just downloading the data feeds from the NVD): https://dl.acm.org/doi/10.1145/3379597.3387501

copernico commented 2 years ago

Another (better) paper here: https://dl.acm.org/doi/10.1145/3468264.3473122