RubyGems - fidius-cvedb - Versions diffs - 0.0.2 - Mend

fidius-cvedb 0.0.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (43) hide show

data/Gemfile +7 -0
data/LICENSE +57 -0
data/README.md +106 -0
data/Rakefile +15 -0
data/bin/fidius-cvedb +64 -0
data/fidius-cvedb.gemspec +22 -0
data/lib/cveparser/main.rb +31 -0
data/lib/cveparser/ms_parser.rb +65 -0
data/lib/cveparser/parser.rb +138 -0
data/lib/cveparser/parser_model.rb +72 -0
data/lib/cveparser/rails_store.rb +266 -0
data/lib/db/migrate/20101122144313_create_impacts.rb +14 -0
data/lib/db/migrate/20101122145008_create_default_impacts.rb +19 -0
data/lib/db/migrate/20101122153216_create_cvsses.rb +19 -0
data/lib/db/migrate/20101122174719_create_products.rb +19 -0
data/lib/db/migrate/20101122175021_create_vulnerable_softwares.rb +16 -0
data/lib/db/migrate/20101122175244_create_vulnerable_configurations.rb +14 -0
data/lib/db/migrate/20101122175402_create_nvd_entries.rb +18 -0
data/lib/db/migrate/20101125140254_create_vulnerability_references.rb +16 -0
data/lib/db/migrate/20101202100411_create_xmls.rb +14 -0
data/lib/db/migrate/20101210141850_create_mscves.rb +14 -0
data/lib/db/migrate/20110118124541_change_impacts_structure.rb +13 -0
data/lib/db/migrate/20110118131643_destroy_vulnerable_configurations.rb +13 -0
data/lib/fidius-cvedb.rb +17 -0
data/lib/fidius-cvedb/railtie.rb +14 -0
data/lib/fidius-cvedb/version.rb +5 -0
data/lib/models/fidius/cve_db/cve_connection.rb +7 -0
data/lib/models/fidius/cve_db/cvss.rb +5 -0
data/lib/models/fidius/cve_db/impact.rb +2 -0
data/lib/models/fidius/cve_db/mscve.rb +3 -0
data/lib/models/fidius/cve_db/nvd_entry.rb +23 -0
data/lib/models/fidius/cve_db/product.rb +6 -0
data/lib/models/fidius/cve_db/vulnerability_reference.rb +3 -0
data/lib/models/fidius/cve_db/vulnerable_configuration.rb +6 -0
data/lib/models/fidius/cve_db/vulnerable_software.rb +6 -0
data/lib/models/fidius/cve_db/xml.rb +2 -0
data/lib/tasks/db_backup.rake +30 -0
data/lib/tasks/nvd_migrate.rake +25 -0
data/lib/tasks/parse_cves.rake +146 -0
data/test/cve_parser_test.rb +25 -0
data/test/test_references.xml +9 -0
data/test/test_v2.xml +3 -0
metadata +120 -0

data/test/test_references.xml ADDED

@@ -0,0 +1,9 @@
+<?xml version='1.0' encoding='UTF-8'?>
+<nvd xmlns:vuln="http://scap.nist.gov/schema/vulnerability/0.4" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:cpe-lang="http://cpe.mitre.org/language/2.0" xmlns:cvss="http://scap.nist.gov/schema/cvss-v2/0.2" xmlns="http://scap.nist.gov/schema/feed/vulnerability/2.0" nvd_xml_version="2.0" pub_date="2011-02-08T06:05:00" xsi:schemaLocation="http://scap.nist.gov/schema/feed/vulnerability/2.0 http://nvd.nist.gov/schema/nvd-cve-feed_2.0.xsd">
+    <entry id="CVE-2009-5051">
+        <vuln:references xml:lang="en" reference_type="UNKNOWN">
+            <vuln:source>CONFIRM</vuln:source>
+            <vuln:reference xml:lang="en" href="http://www.hastymail.org/security/">http://www.hastymail.org/security/</vuln:reference>
+        </vuln:references>
+    </entry>
+</nvd>

data/test/test_v2.xml ADDED

@@ -0,0 +1,3 @@
+<?xml version='1.0' encoding='UTF-8'?>
+<nvd xmlns:vuln="http://scap.nist.gov/schema/vulnerability/0.4" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:cpe-lang="http://cpe.mitre.org/language/2.0" xmlns:cvss="http://scap.nist.gov/schema/cvss-v2/0.2" xmlns="http://scap.nist.gov/schema/feed/vulnerability/2.0" nvd_xml_version="1.0" pub_date="2011-02-08T06:05:00" xsi:schemaLocation="http://scap.nist.gov/schema/feed/vulnerability/2.0 http://nvd.nist.gov/schema/nvd-cve-feed_2.0.xsd">
+</nvd>

metadata ADDED

@@ -0,0 +1,120 @@
+--- !ruby/object:Gem::Specification
+name: fidius-cvedb
+version: !ruby/object:Gem::Version
+  prerelease: false
+  segments:
+  - 0
+  - 0
+  - 2
+  version: 0.0.2
+platform: ruby
+authors:
+- Andreas Bender
+- "Jens F\xC3\xA4rber"
+autorequire:
+bindir: bin
+cert_chain: []
+date: 2011-02-10 00:00:00 +01:00
+default_executable:
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: nokogiri
+  prerelease: false
+  requirement: &id001 !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        segments:
+        - 0
+        version: "0"
+  type: :runtime
+  version_requirements: *id001
+description: "This gem provides an opportunity to run a vulnerability database in your own environt. Therefore it comes with a parser for the National Vulnerability Database and ActiveRecord models for storing the entries in a local database and accessing Entries comfortable with Rails. "
+email:
+- bender@tzi.de
+- jfaerber@tzi.de
+executables:
+- fidius-cvedb
+extensions: []
+extra_rdoc_files: []
+files:
+- Gemfile
+- LICENSE
+- README.md
+- Rakefile
+- bin/fidius-cvedb
+- fidius-cvedb.gemspec
+- lib/cveparser/main.rb
+- lib/cveparser/ms_parser.rb
+- lib/cveparser/parser.rb
+- lib/cveparser/parser_model.rb
+- lib/cveparser/rails_store.rb
+- lib/db/migrate/20101122144313_create_impacts.rb
+- lib/db/migrate/20101122145008_create_default_impacts.rb
+- lib/db/migrate/20101122153216_create_cvsses.rb
+- lib/db/migrate/20101122174719_create_products.rb
+- lib/db/migrate/20101122175021_create_vulnerable_softwares.rb
+- lib/db/migrate/20101122175244_create_vulnerable_configurations.rb
+- lib/db/migrate/20101122175402_create_nvd_entries.rb
+- lib/db/migrate/20101125140254_create_vulnerability_references.rb
+- lib/db/migrate/20101202100411_create_xmls.rb
+- lib/db/migrate/20101210141850_create_mscves.rb
+- lib/db/migrate/20110118124541_change_impacts_structure.rb
+- lib/db/migrate/20110118131643_destroy_vulnerable_configurations.rb
+- lib/fidius-cvedb.rb
+- lib/fidius-cvedb/railtie.rb
+- lib/fidius-cvedb/version.rb
+- lib/models/fidius/cve_db/cve_connection.rb
+- lib/models/fidius/cve_db/cvss.rb
+- lib/models/fidius/cve_db/impact.rb
+- lib/models/fidius/cve_db/mscve.rb
+- lib/models/fidius/cve_db/nvd_entry.rb
+- lib/models/fidius/cve_db/product.rb
+- lib/models/fidius/cve_db/vulnerability_reference.rb
+- lib/models/fidius/cve_db/vulnerable_configuration.rb
+- lib/models/fidius/cve_db/vulnerable_software.rb
+- lib/models/fidius/cve_db/xml.rb
+- lib/tasks/db_backup.rake
+- lib/tasks/nvd_migrate.rake
+- lib/tasks/parse_cves.rake
+- test/cve_parser_test.rb
+- test/test_references.xml
+- test/test_v2.xml
+has_rdoc: true
+homepage: http://fidius.me
+licenses: []
+post_install_message:
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  none: false
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      segments:
+      - 0
+      version: "0"
+required_rubygems_version: !ruby/object:Gem::Requirement
+  none: false
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      segments:
+      - 0
+      version: "0"
+requirements: []
+rubyforge_project: ""
+rubygems_version: 1.3.7
+signing_key:
+specification_version: 3
+summary: Provides a parser and ActiveRecord models for the Common Vulnerability and Exposures (CVE) entries offered by the National Vulnerability Database (http://nvd.nist.gov/).
+test_files: []