TatuLund
commented
11 months ago I think the idea of offline support somewhat defies the idea of the product. The CVE database is updating very frequently. The AppSecKit tool also has timed task to run the scan every 24h or so, as there might be updates. If you need to manually load the data, there is no point in this timed task for example.
It would be good if it were possible to import the OSV vulnerabilities via a provided file. Especially in enterprise companies, there are always restrictions regarding the Internet connection/firewall and the use of AppSecKit is not possible because no vulnerabilities are downloaded from OSV. It would therefore be good if the list could be made available to the AppSecKit via a file.