future-architect / vuls

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
https://vuls.io/
GNU General Public License v3.0
11.01k stars 1.16k forks source link

request: more BOM sources and general CVE scans #1640

Open mcandre opened 1 year ago

mcandre commented 1 year ago

I love how vuls supports scanning for CVE's in some common package managers. I would like to see this list extended, in order to catch security problems on more machines.

(If you already include support for some of these, please lemme know which ones!)

I think a lot of vulnerabilities hide out in these kinds of alleys, so the more of these we can include in vuls scans, the stronger our security posture will be.

MaineK00n commented 1 year ago

It may be more valuable to summarize the availability of security advisories than on a per-package manager basis.

MaineK00n commented 1 year ago

Please refer to the following for the status of Vuls support.