search

stevespringett / nist-data-mirror

A simple Java command-line utility to mirror the CVE JSON data from NIST.
Apache License 2.0
206 stars 93 forks source link

json 1.0 feeds no longer supported? #68

Closed oosterholt closed 4 years ago

oosterholt commented 4 years ago

It looks like the json 1.0 feeds are no longer supported. This was announced here. Looks like they finally decided to take the old feeds offline. Since nist-data-mirror tries to download both versions, an error level is reported once it has finished.

sellersj commented 4 years ago

Thank you for opening a ticket https://github.com/stevespringett/nist-data-mirror/issues/68

Jim

On Thu, Sep 17, 2020 at 10:38 AM Rick Oosterholt notifications@github.com wrote:

It looks like the json 1.0 feeds are no longer supported. This was announced here https://nvd.nist.gov/General/News/JSON-1-1-Vulnerability-Feed-Release. Looks like they finally decided to take the old feeds offline. Since nist-data-mirror tries to download both versions, an error level is reported once it has finished.

— You are receiving this because you are subscribed to this thread. Reply to this email directly, view it on GitHub https://github.com/stevespringett/nist-data-mirror/issues/68, or unsubscribe https://github.com/notifications/unsubscribe-auth/AAABCJRWLLS3ATCOB357YQTSGINOLANCNFSM4RQRIODQ .

rcooper85 commented 4 years ago

Is it as simple as removing the reference to 1.0 in the main method? I tested it locally and it seemed to work for me.

stevespringett commented 4 years ago

Resolved in 1.5.0

albuch commented 4 years ago

Hi @stevespringett could you please release the 1.5.0 tag? It's not yet available at Maven Central: https://search.maven.org/artifact/us.springett/nist-data-mirror

stevespringett commented 4 years ago

Ah - Forgot to hit release on central. Done.