search

manchicken / octocrab

A modern, extensible GitHub API Client for Rust.
Other
0 stars 0 forks source link

/advisories #265

Open manchicken opened 3 months ago

manchicken commented 3 months ago

Implement endpoint

Endpoint docs: https://docs.github.com/en/enterprise-cloud@latest/rest/security-advisories/global-advisories?apiVersion=2022-11-28#list-global-security-advisories

curl convention

curl -L \
  -H "Accept: application/vnd.github+json" \
  -H "Authorization: Bearer <YOUR-TOKEN>" \
  -H "X-GitHub-Api-Version: 2022-11-28" \
  https://api.github.com/advisories

Methods

manchicken commented 3 months ago

Sample response:

[
  {
    "id": 1,
    "ghsa_id": "GHSA-abcd-1234-efgh",
    "cve_id": "CVE-2050-00000",
    "url": "https://api.github.com/advisories/GHSA-abcd-1234-efgh",
    "html_url": "https://github.com/advisories/GHSA-abcd-1234-efgh",
    "repository_advisory_url": "https://api.github.com/repos/project/a-package/security-advisories/GHSA-abcd-1234-efgh",
    "summary": "Heartbleed security advisory",
    "description": "This bug allows an attacker to read portions of the affected server’s memory, potentially disclosing sensitive information.",
    "type": "reviewed",
    "severity": "high",
    "source_code_location": "https://github.com/project/a-package",
    "identifiers": [
      {
        "type": "GHSA",
        "value": "GHSA-abcd-1234-efgh"
      },
      {
        "type": "CVE",
        "value": "CVE-2050-00000"
      }
    ],
    "references": [
      "https://nvd.nist.gov/vuln/detail/CVE-2050-00000"
    ],
    "published_at": "2023-03-23T02:30:56Z",
    "updated_at": "2023-03-24T02:30:56Z",
    "github_reviewed_at": "2023-03-23T02:30:56Z",
    "nvd_published_at": "2023-03-25T02:30:56Z",
    "withdrawn_at": null,
    "vulnerabilities": [
      {
        "package": {
          "ecosystem": "npm",
          "name": "a-package"
        },
        "first_patched_version": "1.0.3",
        "vulnerable_version_range": "<=1.0.2",
        "vulnerable_functions": [
          "a_function"
        ]
      }
    ],
    "cvss": {
      "vector_string": "CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H",
      "score": 7.6
    },
    "cwes": [
      {
        "cwe_id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      }
    ],
    "credits": [
      {
        "user": {
          "login": "octocat",
          "id": 1,
          "node_id": "MDQ6VXNlcjE=",
          "avatar_url": "https://github.com/images/error/octocat_happy.gif",
          "gravatar_id": "",
          "url": "https://api.github.com/users/octocat",
          "html_url": "https://github.com/octocat",
          "followers_url": "https://api.github.com/users/octocat/followers",
          "following_url": "https://api.github.com/users/octocat/following{/other_user}",
          "gists_url": "https://api.github.com/users/octocat/gists{/gist_id}",
          "starred_url": "https://api.github.com/users/octocat/starred{/owner}{/repo}",
          "subscriptions_url": "https://api.github.com/users/octocat/subscriptions",
          "organizations_url": "https://api.github.com/users/octocat/orgs",
          "repos_url": "https://api.github.com/users/octocat/repos",
          "events_url": "https://api.github.com/users/octocat/events{/privacy}",
          "received_events_url": "https://api.github.com/users/octocat/received_events",
          "type": "User",
          "site_admin": false
        },
        "type": "analyst"
      }
    ]
  }
]
manchicken commented 3 months ago

Schema:

{
  "type": "array",
  "items": {
    "description": "A GitHub Security Advisory.",
    "type": "object",
    "properties": {
      "ghsa_id": {
        "type": "string",
        "description": "The GitHub Security Advisory ID.",
        "readOnly": true
      },
      "cve_id": {
        "type": [
          "string",
          "null"
        ],
        "description": "The Common Vulnerabilities and Exposures (CVE) ID.",
        "readOnly": true
      },
      "url": {
        "type": "string",
        "description": "The API URL for the advisory.",
        "readOnly": true
      },
      "html_url": {
        "type": "string",
        "format": "uri",
        "description": "The URL for the advisory.",
        "readOnly": true
      },
      "repository_advisory_url": {
        "type": [
          "string",
          "null"
        ],
        "format": "uri",
        "description": "The API URL for the repository advisory.",
        "readOnly": true
      },
      "summary": {
        "type": "string",
        "description": "A short summary of the advisory.",
        "maxLength": 1024
      },
      "description": {
        "type": [
          "string",
          "null"
        ],
        "description": "A detailed description of what the advisory entails.",
        "maxLength": 65535
      },
      "type": {
        "type": "string",
        "description": "The type of advisory.",
        "readOnly": true,
        "enum": [
          "reviewed",
          "unreviewed",
          "malware"
        ]
      },
      "severity": {
        "type": "string",
        "description": "The severity of the advisory.",
        "enum": [
          "critical",
          "high",
          "medium",
          "low",
          "unknown"
        ]
      },
      "source_code_location": {
        "type": [
          "string",
          "null"
        ],
        "format": "uri",
        "description": "The URL of the advisory's source code."
      },
      "identifiers": {
        "type": [
          "array",
          "null"
        ],
        "readOnly": true,
        "items": {
          "type": "object",
          "properties": {
            "type": {
              "type": "string",
              "description": "The type of identifier.",
              "enum": [
                "CVE",
                "GHSA"
              ]
            },
            "value": {
              "type": "string",
              "description": "The identifier value."
            }
          },
          "required": [
            "type",
            "value"
          ]
        }
      },
      "references": {
        "type": [
          "array",
          "null"
        ],
        "items": {
          "type": "string",
          "description": "URLs with more information regarding the advisory."
        }
      },
      "published_at": {
        "type": "string",
        "format": "date-time",
        "description": "The date and time of when the advisory was published, in ISO 8601 format.",
        "readOnly": true
      },
      "updated_at": {
        "type": "string",
        "format": "date-time",
        "description": "The date and time of when the advisory was last updated, in ISO 8601 format.",
        "readOnly": true
      },
      "github_reviewed_at": {
        "type": [
          "string",
          "null"
        ],
        "format": "date-time",
        "description": "The date and time of when the advisory was reviewed by GitHub, in ISO 8601 format.",
        "readOnly": true
      },
      "nvd_published_at": {
        "type": [
          "string",
          "null"
        ],
        "format": "date-time",
        "description": "The date and time when the advisory was published in the National Vulnerability Database, in ISO 8601 format.\nThis field is only populated when the advisory is imported from the National Vulnerability Database.",
        "readOnly": true
      },
      "withdrawn_at": {
        "type": [
          "string",
          "null"
        ],
        "format": "date-time",
        "description": "The date and time of when the advisory was withdrawn, in ISO 8601 format.",
        "readOnly": true
      },
      "vulnerabilities": {
        "type": [
          "array",
          "null"
        ],
        "description": "The products and respective version ranges affected by the advisory.",
        "items": {
          "description": "A vulnerability describing the product and its affected versions within a GitHub Security Advisory.",
          "type": "object",
          "properties": {
            "package": {
              "description": "The name of the package affected by the vulnerability.",
              "type": [
                "object",
                "null"
              ],
              "properties": {
                "ecosystem": {
                  "type": "string",
                  "description": "The package's language or package management ecosystem.",
                  "enum": [
                    "rubygems",
                    "npm",
                    "pip",
                    "maven",
                    "nuget",
                    "composer",
                    "go",
                    "rust",
                    "erlang",
                    "actions",
                    "pub",
                    "other",
                    "swift"
                  ]
                },
                "name": {
                  "type": [
                    "string",
                    "null"
                  ],
                  "description": "The unique package name within its ecosystem."
                }
              },
              "required": [
                "ecosystem",
                "name"
              ]
            },
            "vulnerable_version_range": {
              "type": [
                "string",
                "null"
              ],
              "description": "The range of the package versions affected by the vulnerability."
            },
            "first_patched_version": {
              "type": [
                "string",
                "null"
              ],
              "description": "The package version that resolves the vulnerability."
            },
            "vulnerable_functions": {
              "type": [
                "array",
                "null"
              ],
              "description": "The functions in the package that are affected by the vulnerability.",
              "readOnly": true,
              "items": {
                "type": "string"
              }
            }
          },
          "required": [
            "package",
            "vulnerable_version_range",
            "first_patched_version",
            "vulnerable_functions"
          ]
        }
      },
      "cvss": {
        "type": [
          "object",
          "null"
        ],
        "properties": {
          "vector_string": {
            "type": [
              "string",
              "null"
            ],
            "description": "The CVSS vector."
          },
          "score": {
            "type": [
              "number",
              "null"
            ],
            "description": "The CVSS score.",
            "minimum": 0,
            "maximum": 10,
            "readOnly": true
          }
        },
        "required": [
          "vector_string",
          "score"
        ]
      },
      "cwes": {
        "type": [
          "array",
          "null"
        ],
        "items": {
          "type": "object",
          "properties": {
            "cwe_id": {
              "type": "string",
              "description": "The Common Weakness Enumeration (CWE) identifier."
            },
            "name": {
              "type": "string",
              "description": "The name of the CWE.",
              "readOnly": true
            }
          },
          "required": [
            "cwe_id",
            "name"
          ]
        }
      },
      "credits": {
        "type": [
          "array",
          "null"
        ],
        "description": "The users who contributed to the advisory.",
        "readOnly": true,
        "items": {
          "type": "object",
          "properties": {
            "user": {
              "title": "Simple User",
              "description": "A GitHub user.",
              "type": "object",
              "properties": {
                "name": {
                  "type": [
                    "string",
                    "null"
                  ]
                },
                "email": {
                  "type": [
                    "string",
                    "null"
                  ]
                },
                "login": {
                  "type": "string",
                  "examples": [
                    "octocat"
                  ]
                },
                "id": {
                  "type": "integer",
                  "format": "int64",
                  "examples": [
                    1
                  ]
                },
                "node_id": {
                  "type": "string",
                  "examples": [
                    "MDQ6VXNlcjE="
                  ]
                },
                "avatar_url": {
                  "type": "string",
                  "format": "uri",
                  "examples": [
                    "https://github.com/images/error/octocat_happy.gif"
                  ]
                },
                "gravatar_id": {
                  "type": [
                    "string",
                    "null"
                  ],
                  "examples": [
                    "41d064eb2195891e12d0413f63227ea7"
                  ]
                },
                "url": {
                  "type": "string",
                  "format": "uri",
                  "examples": [
                    "https://api.github.com/users/octocat"
                  ]
                },
                "html_url": {
                  "type": "string",
                  "format": "uri",
                  "examples": [
                    "https://github.com/octocat"
                  ]
                },
                "followers_url": {
                  "type": "string",
                  "format": "uri",
                  "examples": [
                    "https://api.github.com/users/octocat/followers"
                  ]
                },
                "following_url": {
                  "type": "string",
                  "examples": [
                    "https://api.github.com/users/octocat/following{/other_user}"
                  ]
                },
                "gists_url": {
                  "type": "string",
                  "examples": [
                    "https://api.github.com/users/octocat/gists{/gist_id}"
                  ]
                },
                "starred_url": {
                  "type": "string",
                  "examples": [
                    "https://api.github.com/users/octocat/starred{/owner}{/repo}"
                  ]
                },
                "subscriptions_url": {
                  "type": "string",
                  "format": "uri",
                  "examples": [
                    "https://api.github.com/users/octocat/subscriptions"
                  ]
                },
                "organizations_url": {
                  "type": "string",
                  "format": "uri",
                  "examples": [
                    "https://api.github.com/users/octocat/orgs"
                  ]
                },
                "repos_url": {
                  "type": "string",
                  "format": "uri",
                  "examples": [
                    "https://api.github.com/users/octocat/repos"
                  ]
                },
                "events_url": {
                  "type": "string",
                  "examples": [
                    "https://api.github.com/users/octocat/events{/privacy}"
                  ]
                },
                "received_events_url": {
                  "type": "string",
                  "format": "uri",
                  "examples": [
                    "https://api.github.com/users/octocat/received_events"
                  ]
                },
                "type": {
                  "type": "string",
                  "examples": [
                    "User"
                  ]
                },
                "site_admin": {
                  "type": "boolean"
                },
                "starred_at": {
                  "type": "string",
                  "examples": [
                    "\"2020-07-09T00:17:55Z\""
                  ]
                }
              },
              "required": [
                "avatar_url",
                "events_url",
                "followers_url",
                "following_url",
                "gists_url",
                "gravatar_id",
                "html_url",
                "id",
                "node_id",
                "login",
                "organizations_url",
                "received_events_url",
                "repos_url",
                "site_admin",
                "starred_url",
                "subscriptions_url",
                "type",
                "url"
              ]
            },
            "type": {
              "type": "string",
              "description": "The type of credit the user is receiving.",
              "enum": [
                "analyst",
                "finder",
                "reporter",
                "coordinator",
                "remediation_developer",
                "remediation_reviewer",
                "remediation_verifier",
                "tool",
                "sponsor",
                "other"
              ]
            }
          },
          "required": [
            "user",
            "type"
          ]
        }
      }
    },
    "required": [
      "ghsa_id",
      "cve_id",
      "url",
      "html_url",
      "repository_advisory_url",
      "summary",
      "description",
      "type",
      "severity",
      "source_code_location",
      "identifiers",
      "references",
      "published_at",
      "updated_at",
      "github_reviewed_at",
      "nvd_published_at",
      "withdrawn_at",
      "vulnerabilities",
      "cvss",
      "cwes",
      "credits"
    ],
    "additionalProperties": false
  }
}