troubadix 25.2.4__py3-none-any.whl → 25.3.1__py3-none-any.whl

troubadix/__version__.py

@@ -2,4 +2,4 @@
 
 # THIS IS AN AUTOGENERATED FILE. DO NOT TOUCH!
 
-__version__ = "25.2.4"
+__version__ = "25.3.1"

troubadix/argparser.py

@@ -26,6 +26,7 @@ from pathlib import Path
 from pontos.terminal import Terminal
 
 
+# allows non existent paths and directory paths
 def directory_type(string: str) -> Path:
     directory_path = Path(string)
     if directory_path.exists() and not directory_path.is_dir():
@@ -33,6 +34,15 @@ def directory_type(string: str) -> Path:
     return directory_path
 
 
+# allows only existing directory paths
+def directory_type_existing(string: str) -> Path:
+    directory_path = Path(string)
+    if not directory_path.is_dir():
+        raise ValueError(f"{string} is not a directory.")
+    return directory_path
+
+
+# allows non existent paths and file paths
 def file_type(string: str) -> Path:
     file_path = Path(string)
     if file_path.exists() and not file_path.is_file():
@@ -40,6 +50,14 @@ def file_type(string: str) -> Path:
     return file_path
 
 
+# allows only existing file paths
+def file_type_existing(string: str) -> Path:
+    file_path = Path(string)
+    if not file_path.is_file():
+        raise ValueError(f"{string} is not a file.")
+    return file_path
+
+
 def check_cpu_count(number: str) -> int:
     """Make sure this value is valid
     Default: use half of the available cores to not block the machine"""

troubadix/codespell/codespell.exclude

@@ -34,6 +34,7 @@
 0x20:  C8 E6 AB 65 3B A9 5A 0E 14 00 00 05 41 44 4D 49    ...e;.Z.....ADMI
 0x20:  D5 A6 22 5D 33 E4 C6 0E 14 00 00 05 61 64 6D 69    .."]3.......admi
 0x40:  61 6C 64 6F 6D 61 69 6E 00 07 64 65 66 61 75 6C    aldomain..defaul
+0x40:  66 6C 61 74 65 3D 67 7A 69 70 0D 0A 66 69 6C 65    flate=gzip..file
 # 0x50:  72 6F 2E 70 72 6F 64 75 63 74 2E 64 65 76 69 63    ro.product.devic
 # 0x50:  74 72 69 6E 67 20 6D 69 73 73 69 6E 67 20 6F 72    tring missing or
 # 0x50:  75 65 73 74 3A 20 47 45 54 20 2F 20                uest: GET / # nb: Trailing space
@@ -231,6 +232,7 @@ Claus Wahlers reported that random images from GPU memory
                clen +
   clen = "567";
   clen = data_len( data:_ciphers );
+  - Cleo Streem
 "cliente",
 cmd = 'for usr in $(cut -d: -f1 /etc/shadow); do [[ $(chage --list $usr | grep \'^Last password change\' | cut -d: -f2) > $(date) ]] && echo "$usr :$(chage --list $usr | grep \'^Last password change\' | cut -d: -f2)"; done';
 cmd = "mount | grep -w ro";
@@ -262,6 +264,9 @@ Corrected a badly constracted file which could have allowed treating of
  could lead to shared memory segments of other users beeing freed
   cpe = build_cpe(value:appVer, exp:"^([0-9]\.[0-9]+\.[0-9]+)", base:"cpe:/a:shemes:grabit:");
     cpe = build_cpe(value:ver, exp:"^([0-9.]+)", base:"cpe:/a:mitre:ovaldi:");
+    cpe = build_cpe(value: vers, exp: "^([0-9.]+)", base: "cpe:/a:aprox:aproxengine:");
+      cpe = "cpe:/a:aprox:aproxengine";
+CPE = "cpe:/a:aprox:aproxengine";
 CPE = "cpe:/a:mapp:webtrekk:";
       cpe = "cpe:/a:mitre:ovaldi";
 CPE = "cpe:/a:netsparker:wass";
@@ -270,6 +275,7 @@ CPE:           cpe:/a:tawk:tawk.to_live_chat:0.8.0
     cpe =~ "^cpe:/o:hp:laserjet_pro_420[1-3](cdn|dn|dw|dne|dwe)_firmware") {
  CPU' could have occured because a retry loop continually finds the same
 crafted IFF ILBM file. NOTE: some of these details are obtained from
+crafted wLongsPerEntry or nEntriesInUse value in the indx chunk, which
       crapData = string("ALLO ", crap(length: 25000),"\r\n");
 crash) via a malformed file with UPack encoding (CVE-2009-1371).
 Create all system-defined macros defore processing command-line given
@@ -340,6 +346,7 @@ CVE-2020-36158: Fixed an issue wich might have allowed a remote
 CVE-2020-5208: Fixed multiple remote code executtion vulnerabilities
 CVE-2020-8492: Fixed a regular expression in urrlib that was prone to
 CVE-2021-30004: Fixed an issue where forging attacks might have occured
+  * CVE-2021-47311: net: qcom/emac: fix UAF in emac_remove (bsc#1225010).
 dass eine geeignete Windows 8.1 Version, vorzugsweise eine 64-Bit Variante, eingesetzt werden muss.");
 "DataArchivingService/webcontent/aas",
   "/DataArchivingService/webcontent/aas/aas_store.jsp");
@@ -398,7 +405,7 @@ Enable log information of starting/stoping services. (bsc#1144923,
 <!-- Ende Message Box -->
   Engineering (TE) database and then a subsequent operation attempts to process these, rpd will
 Engineering (TE) tunnel's physical source interface is not propagated to hardware after the adjacency is lost.
-- ERRO[0000] Error creating docker key file: CreateKeyFile write root.key file failed. open /root/.docker/root.key: permission denied 
+- ERRO[0000] Error creating docker key file: CreateKeyFile write root.key file failed. open /root/.docker/root.key: permission denied
   eSpace IAD, eSpace U1981 and eSpace USM.");
   establishment of the Cisco Nexus 9000 Series Application Centric Infrastructure (ACI) Mode Switch
   exact-width integer types int{N}_t and uint{N}_t.
@@ -410,10 +417,13 @@ EXP=expext.dll
   expressions that are not properly handled by a stap script that
  * extended EAP-SIM/AKA fast re-authentication to allow use with FILS
 extended EAP-SIM/AKA fast re-authentication to allow use with FILS
+  - Extended HTTP methods: ACL, BASELINE-CONTROL, BIND, CHECKIN, CHECKOUT, COPY, LABEL, LINK, LOCK,
+extended_methods = make_list("ACL", "BASELINE-CONTROL", "BIND", "CHECKIN", "CHECKOUT", "COPY",
  external emulators, which may have cuased Xen to crash, resulting in a
 'facsimiletelephonenumber' to the Access Control Instruction (ACI) for user
   family_id = 'oval:org.mitre.oval:obj:99';
   family_xml = '\t\t<family_item xmlns="http://oval.mitre.org/XMLSchema/oval-sys' +
+      "Faroe Islands" : [ "FO", "English", "PAL", "(UTC+00:00) Dublin", 0 ],
 (FATE#312793, bnc#782369). The userland utilities were published seperately to support this feature.
 (FATE#313309) The ipset userland utility will be published seperately to support this feature.
 (FATE#314441). A seperate hyper-v package will be published to support this feature.
@@ -546,6 +556,7 @@ if (http_vuln_check(port: port, url: url, pattern: "<title>WAN Setup", check_hea
   if(!isnull(res = isdpkgvuln(pkg:"nd", ver:"0.5.0-1woody1", rls:"DEB3.0"))) {
   if(!isnull(res = isrpmvuln(pkg:"libell", rpm:"libell~0.26~1.fc31", rls:"FC31"))) {
 if( "Login successed" >< recv ) {
+  if (methods = egrep(pattern: "^([Aa]llow|[Pp]ublic)\s*:", string: res, icase: FALSE)) {
   if( model =~ "^(RICOH|LANIER|SAVIN|NRG)" && "Network Printer" >< model ) {
 if( ( model =~ '^RP200' || model =~ '^TE[3456]0' ) && revcomp( a: version, b: "v600r006c00spc500" ) < 0) {
 if( model =~ '^TE[3456]0' && revcomp( a: version, b: "v600r006c00spc500" ) < 0 ) {
@@ -565,7 +576,9 @@ if (prod =~ "^BMX\s*NOE\s*0110$") {
 if (prod =~ "^BMX\s*NOE\s*0110$" || prod =~ "^BMX\s*NOE\s*0110H$") {
 if (prod =~ "^BMX\s*NOE\s*0110" && version_is_less(version: version, test_version: "6.5")) {
 if (prod =~ "^BMX\s*NOE\s*0110" && version_is_less(version: version, test_version: "6.70")) {
+if (prod =~ "^BMX\s*NOE\s*0200") {
 if (!prod || (prod !~ "^BMX\s*P34" && prod !~ "^BMX\s*NOE\s*01[01]0"))
+if (!prod || (prod !~ "^BMX\s*P34" && prod !~ "^BMX\s*NOE\s*0(1[01]|20)0"))
 if (!prod || (prod !~ "^BMX\s*P34" && prod !~ "^BMX\s*NOR\s*0200H" && prod !~ "^BMX\s*NOE\s*0100" &&
 if( r =~ " (A\. A\. Milne|Albert Einstein|Anonimo|Antico proverbio cinese|Autor desconocido|Charles Dickens|Francisco de Quevedo y Villegas|George Bernard Shaw|Jaime Balmes|Johann Wolfgang von Goethe|Jil Sander|Juana de Asbaje|Konfucius|Lord Philip Chesterfield|Montaigne|Petrarca|Ralph Waldo Emerson|Seneca|Syrus|Werner von Siemens)" ||
   if(rcvRes && '>iAm[i]nE<' >< rcvRes)
@@ -585,6 +598,7 @@ if( "Server: Boa" >!< banner || ( "AirLive" >!< banner && banner !~ "(WL|MD|BU|P
 if (sysdesc =~ "^(RICOH|LANIER|SAVIN|NRG)" && (sysdesc =~ "(RICOH|LANIER|SAVIN|NRG) Network Printer" ||
 if ("<title>Cisco NFVIS</title>" >< res && 'content="Xenon Boostrap Admin Panel"' >< res) {
 if ("<title>COMfortel</title>" >< res && "/statics/script/pageChallenge.js" >< res) {
+  if( "<title>Login to Axis2:: Administartion page</title>" >< buf8 ||
         if( "[Xx]-[Aa]dobe-[Cc]ontent" >< pattern )
       if( "[Xx]-[Aa]dobe-[Cc]ontent" >< pattern )
 If you disable this policy setting, transcripting of PowerShell-based applications is disabled by
@@ -678,7 +692,9 @@ kJtP0F6mv/Afe/5s7yd3ZJ/72yT73NjLg0vWbmLkop6eOR+CKw4nxorWxpocAj0p
 # Kubernetes Dashboard Public WAN (Internet) Accessible
 L3: conring size for XEN HV's with huge memory to small. Inital Xen logs
 LAST_PATCH_UPDATE UpToDate
+  "leadin/readme.txt", "HubSpot#---#=== HubSpot -#---#Stable tag: ([0-9.]+)#---#cpe:/a:hubspot:hubspot",
  leaks because of a missing check when transfering pages via
+<li><a href="Status_Router.asp"><strong><script type="text/javascript">Capture(bmenu.statu)</script></strong></a></li>
 library: Increment to 7:0:1 No changes, no removals New fuctions:
 [link moved to references] has more informations.
 <link rel="stylesheet" href="/bui/base.css?v=GWAY-8.3.1-0086" />
@@ -718,6 +734,7 @@ Mark Shepard discovered a double free in the TCP listener cleanup which could re
 "messasges",
     "Metastasio (Ipermestra)" >< banner || '"\r\nAnonimo' >< banner || banner =~ '^"[^"]+" *Autor desconocido[ \t\r\n]*$' || "/usr/games/fortune: not found" >< banner ||
     "Metastasio (Ipermestra)" >< r || '"\r\nAnonimo' >< r || r =~ '^"[^"]+" *Autor desconocido[ \t\r\n]*$' ) {
+    methods = eregmatch(pattern: "^([Aa]llow|[Pp]ublic)\s*:\s*([A-Z,]+\s*([A-Z ,]+)?)", string: methods,
  MFSA 2012-27 / CVE-2012-0474: Security researchers Jordi Chancel and Eddy Bordi reported that they could short-circuit page loads to show the address of a different site than what is ... [Please see the references for more information on the vulnerabilities]");
  MFSA 2012-75 / CVE-2012-3984: Security researcher David Bloom of Cue discovered that 'select' elements are always-on-top chromeless windows and that navigation away from a page with an active 'select' menu does not remove this window.When another menu is opened programmatically on a new page, the original 'select' menu can be retained and arbitrary HTML content within it rendered, allowing an attacker to cover arbitrary portions of the new page through absolute positioning/scrolling, leading to spoofing attacks. Security researcher Jordi Chancel found a variation that would allow for click-jacking attacks was well.
  MFSA 2013-23 / CVE-2013-0765: Mozilla developer Boris Zbarsky reported that in some circumstances a wrapped WebIDL object can be wrapped multiple times, overwriting the existing wrapp... [Please see the references for more information on the vulnerabilities]");
@@ -863,6 +880,7 @@ reenable php7-dba support of Berkeley DB (bsc#1108554)");
 # Ref : http://www.hsc.fr/ressources/articles/win_net_srv/index.html.en by Jean-Baptiste Marchand
         register_and_report_cpe( app:"Netsparker - Web Application Security Scanner", ver:netVer, base:"cpe:/a:netsparker:wass:", expr:"^([0-9.]+)", insloc:netPath );
     register_and_report_cpe(app:"Wiesemann & Theis GmbH " + appName, ver:version, concluded:concluded,
+  * [REGRESSION] 'call into AER handling regardless of severity' triggers
     reg_xml = '\t\t<registry_item' + status + ' xmlns="http://oval.mitre.org/' +
 Reject invalid eliptic curve point coordinates (bsc#1131291)");
  rejection for EXTRAVERSION = -xfs, but likely little else will be
@@ -891,6 +909,7 @@ req = string("POST /UE/ProcessForm HTTP/1.1\r\n",
   res = http_get_cache(port: port, item: dir + "/product.comparision.php");
 - Restrict envrionment variable expansion to `ENV`, `ADD`, `COPY`,
   result = "Diese Vorgabe muss manuell ueberprueft werden.";
+  "resutls": {
                 return -1, "The following script_xref of VT '" + str(file) + "' is pointing to Mitre/NVD which is already covered by the script_cve_id. This is a redundant info and the script_xref needs to be removed:" + nvd_mitre_link_tags
   return("Diese Vorgabe muss manuell ueberprueft werden.");
         return make_list( "error", text_response + 'Ueberpruefung fehlgeschlagen. Die Verwendung der benoetigten win_cmd_exec Funktion wurde in "Options for Local Security Checks (OID: 1.3.6.1.4.1.25623.1.0.100509)" manuell deaktiviert.\n' );
@@ -939,6 +958,7 @@ SAML/CAS tokens in the session database, an attacker can open an anonymous
   script_mandatory_keys("Jasig CAS server/Installed");
   script_mandatory_keys("shttp/detected");
   script_mandatory_keys("telnet/huawei/te/detected");
+  script_mandatory_keys("wordpress/plugin/leadin/detected");
   script_mandatory_keys("wordpress/plugin/mailin/detected");
   script_name("Acronis Cyber Infrastructure (ACI) Detection (HTTP)");
   script_name("Acronis Cyber Infrastructure (ACI) RCE Vulnerability (SEC-6452)");
@@ -1002,6 +1022,7 @@ SAML/CAS tokens in the session database, an attacker can open an anonymous
   script_tag(name:"affected", value:"Petite Annonce version 1.0 is known to be affected. Other
   script_tag(name:"affected", value:"RV320 Dual Gigabit WAN VPN Router and RV325 Dual Gigabit WAN
   script_tag(name:"affected", value:"RV320 Dual Gigabit WAN VPN Router and RV325 Dual Gigabit WAN VPN Router.");
+  script_tag(name:"affected", value:"Symantec Encryption Management Server (SEMS)
   script_tag(name:"affected", value:"tre on Fedora 23");
   script_tag(name:"affected", value:"tre on Fedora 24");
   script_tag(name:"affected", value:"tre on Fedora 25");
@@ -1042,6 +1063,7 @@ SAML/CAS tokens in the session database, an attacker can open an anonymous
   script_tag(name:"insight", value:"Federico Manuel Bento discovered that the Linux kernel did not properly
   script_tag(name:"insight", value:"FreeS/WAN, Openswan, strongSwan and Super-FreeS/WAN contain two bugs when
   script_tag(name:"insight", value:"In Apache::Session::Browseable before 1.3.6, validity of the X.509 certificate is not checked by default when connecting to remote LDAP backends, because the default configuration of the Net::LDAPS module for Perl is used.
+  script_tag(name:"insight", value:"It was discovered that a race condition existed in the ARC EMAC ethernet
   script_tag(name:"insight", value:"It was discovered that a specially-crafted packet sent to the racoon ipsec key exchange server could cause a tunnel to crash, resulting in a denial of service.
   script_tag(name:"insight", value:"It was discovered that the VLC CAF demuxer incorrectly handled certain
   script_tag(name:"insight", value:"James Troup discovered that MAAS stored RabbitMQ
@@ -1053,6 +1075,7 @@ SAML/CAS tokens in the session database, an attacker can open an anonymous
   script_tag(name:"insight", value:"Juraj Somorovsky, Robert Merget and Nimrod Aviram discovered a padding oracle attack in OpenSSL.
   script_tag(name:"insight", value:"Juraj Somorovsky, Robert Merget, and Nimrod Aviram discovered that certain
   script_tag(name:"insight", value:"libsoup without ca path added, accepted all SSL certificats as trusted. This has been fixed. CVE-2012-2132 has been assigned to this issue.
+  script_tag(name:"insight", value:"Local ABL Client bypass of the required PASOE security checks
   script_tag(name:"insight", value:"LSAT insecurely creates temporary files which can lead to symlink attacks
   script_tag(name:"insight", value:"Manuel Nickschas discovered that Konversation did not properly perform
   script_tag(name:"insight", value:"Meh Chang discovered that Exim incorrectly
@@ -1126,6 +1149,7 @@ SAML/CAS tokens in the session database, an attacker can open an anonymous
   script_tag(name:"summary", value:"Palo Alto PAN-OS is prone to a vulnerability in Panorama SD WAN.");
   script_tag(name:"summary", value:"Petite Annonce is prone to a cross-site scripting (XSS)
   script_tag(name:"summary", value:"Telnet based detection of Huawei TE (Telepresence and
+  script_tag(name:"summary", value:"The management console for Symantec Encryption Management Server (SEMS) is susceptible to potential OS command execution,
   script_tag(name:"summary", value:"The remote host is a SIP Express Router (SER).
   script_tag(name:"summary", value:"The remote host is missing an update for the 'Recommended udpate for SUSE Manager Client Tools' package(s) announced via the SUSE-SU-2016:1366-1 advisory.");
   script_tag(name:"summary", value:"The remote host is missing an update for the 'tre'
@@ -1471,6 +1495,7 @@ url = "/statics/html/index.htm";
 url = "/statics/pageChallenge.html";
       url = "/status/infomation.htm";
   url = string(dir, "/config.xml.sav");
+  url = string( dir, "/index.php?file=Liens&op=", raw_string( 0x22 ), "><script>window.alert('test');</script>" );
   url = string(openVer[2], "/obj/autorisation.class.php?path_om=../../../../../../../../vt-rfi.txt");
 url = "/UE/advanced.html";
 url = "/UE/welcome_login.html";
@@ -1578,4 +1603,3 @@ xml += string( '<oval_system_characteristics xmlns="http://oval.mitre.org/XMLSch
   - XSS via a crafted WAN name on the General Setup screen (CVE-2019-16534)");
   "^[Xx]-[Aa]dobe-[Cc]ontent\s*:\s*AEM" );
   Zhongling Wen discovered that the h323 conntrack handler did not correctly
-    * CVE-2021-47311: net: qcom/emac: fix UAF in emac_remove (bsc#1225010).

troubadix/codespell/codespell.ignore

@@ -22,10 +22,14 @@ complies
 # mentioned here this correction is fully ingored.
 racoon
 # re-use vs. reuse currently unclear, e.g. there is the following from https://dict.leo.org/forum/viewGeneraldiscussion.php?idForum=4&idThread=5586&lp=ende&lang=en:
-# Not even the wise and educated English native speakers seem to have a rule on hyphenation and there are differences between BE and AE.
-# As e.g. the spelling correction in Mozilla Firefox is accepting both we're excluding this for now
+# > Not even the wise and educated English native speakers seem to have a rule on hyphenation and there are differences between BE and AE.
+# https://en.wiktionary.org/wiki/re-uses lists and https://en.wiktionary.org/wiki/re-use lists these as valid as well.
+# As e.g. the spelling correction in Mozilla Firefox is accepting all we're excluding this for now
 re-use
+re-used
+re-uses
 re-usable
+re-using
 # Bootup is commonly used in e.g. example output and seems to be also generally valid like seen on:
 # https://en.wiktionary.org/wiki/bootup
 # so it is ignored (at least for now)

troubadix/plugins/creation_date.py

@@ -52,45 +52,59 @@ class CheckCreationDate(FileContentPlugin):
         # Example: "2017-11-29 13:56:41 +0100 (Wed, 29 Nov 2017)"
         match = tag_pattern.search(file_content)
 
-        if match:
-            try:
-                date_left = datetime.strptime(
-                    match.group("value")[:25], "%Y-%m-%d %H:%M:%S %z"
-                )
-                # 2017-11-29 13:56:41 +0100 (error if no timezone)
-                date_right = datetime.strptime(
-                    match.group("value")[27:43], "%a, %d %b %Y"
-                )
-                week_day_parsed = date_right.strftime("%a")
-            except ValueError:
-                yield LinterError(
-                    "False or incorrectly formatted creation_date.",
-                    file=nasl_file,
-                    plugin=self.name,
-                )
-                return
+        if not match:
+            yield LinterError(
+                "False or incorrectly formatted creation_date.",
+                file=nasl_file,
+                plugin=self.name,
+            )
+            return
 
-            week_day_str = match.group("value")[27:30]
-            # Wed, 29 Nov 2017
-            if date_left.date() != date_right.date():
-                yield LinterError(
-                    "The creation_date consists of two different dates.",
-                    file=nasl_file,
-                    plugin=self.name,
-                )
-            # Check correct weekday
-            elif week_day_str != week_day_parsed:
-                formatted_date = week_day_parsed
-                yield LinterError(
-                    f"Wrong day of week. Please change it from '{week_day_str}"
-                    f"' to '{formatted_date}'.",
-                    file=nasl_file,
-                    plugin=self.name,
-                )
-        else:
+        try:
+            date_left = datetime.strptime(
+                match.group("value")[:25], "%Y-%m-%d %H:%M:%S %z"
+            )
+            # 2017-11-29 13:56:41 +0100 (error if no timezone)
+            date_right = datetime.strptime(
+                match.group("value")[27:43], "%a, %d %b %Y"
+            )
+            week_day_parsed = date_right.strftime("%a")
+        except ValueError:
             yield LinterError(
                 "False or incorrectly formatted creation_date.",
                 file=nasl_file,
                 plugin=self.name,
             )
             return
+
+        week_day_str = match.group("value")[27:30]
+        # Wed, 29 Nov 2017
+        if date_left.date() != date_right.date():
+            yield LinterError(
+                "The creation_date consists of two different dates.",
+                file=nasl_file,
+                plugin=self.name,
+            )
+        # Check correct weekday
+        elif week_day_str != week_day_parsed:
+            formatted_date = week_day_parsed
+            yield LinterError(
+                f"Wrong day of week. Please change it from '{week_day_str}"
+                f"' to '{formatted_date}'.",
+                file=nasl_file,
+                plugin=self.name,
+            )
+
+        last_modification_pattern = get_script_tag_pattern(
+            ScriptTag.LAST_MODIFICATION
+        )
+        if match := last_modification_pattern.search(file_content):
+            last_modification = datetime.strptime(
+                match.group("value")[:25], "%Y-%m-%d %H:%M:%S %z"
+            )
+            if date_left > last_modification:
+                yield LinterError(
+                    "The creation_date must not be greater than the last modification date.",
+                    file=nasl_file,
+                    plugin=self.name,
+                )

troubadix/plugins/dependencies.py

@@ -31,6 +31,20 @@ from troubadix.plugin import (
 )
 
 
+def split_dependencies(value: str) -> list[str]:
+    """
+    Remove single and/or double quotes, spaces
+    and create a list by using the comma as a separator
+    additionally, check and filter for inline comments
+    """
+    dependencies = []
+    for line in value.splitlines():
+        subject = line[: line.index("#")] if "#" in line else line
+        _dependencies = re.sub(r'[\'"\s]', "", subject).split(",")
+        dependencies += [dep for dep in _dependencies if dep != ""]
+    return dependencies
+
+
 class CheckDependencies(FilePlugin):
     name = "check_dependencies"
 
@@ -60,17 +74,7 @@ class CheckDependencies(FilePlugin):
 
         for match in matches:
             if match:
-                # Remove single and/or double quotes, spaces
-                # and create a list by using the comma as a separator
-                # additionally, check and filter for inline comments
-                dependencies = []
-
-                for line in match.group("value").splitlines():
-                    subject = line[: line.index("#")] if "#" in line else line
-                    _dependencies = re.sub(r'[\'"\s]', "", subject).split(",")
-                    dependencies += [dep for dep in _dependencies if dep != ""]
-
-                for dep in dependencies:
+                for dep in split_dependencies(match.group("value")):
                     if not any(
                         (root / vers / dep).exists() for vers in FEED_VERSIONS
                     ):

troubadix/plugins/spaces_before_dots.py

@@ -41,8 +41,8 @@ IGNORE = [
     "common/2008/freebsd/freebsdsa_cpio.nasl",
     "common/2008/freebsd/freebsdsa_cvs2.nasl",
     "common/2009/osc_photoGallery_sql_injection.nasl",
-    "common/2009/secpod_novell_edir_mult_vuln_jul09_lin.nasl",
-    "common/2009/secpod_novell_edir_mult_vuln_jul09_win.nasl",
+    "common/2009/gb_novell_edir_mult_vuln_jul09_lin.nasl",
+    "common/2009/gb_novell_edir_mult_vuln_jul09_win.nasl",
     "common/2010/freebsd/freebsd_3a7c5fc4.nasl",
     "common/2012/freebsd/freebsd_a4a809d8.nasl",
     "common/2015/amazon/alas-2014-455.nasl",

troubadix/plugins/valid_oid.py

@@ -434,8 +434,8 @@ class CheckValidOID(FileContentPlugin):
             "2008/asterisk_pbx_guest_access_enabled.nasl",
             "2008/asterisk_null_pointer_dereference.nasl",
             "2008/goaheadwebserver_source_disclosure.nasl",
-            "2011/secpod_ibm_lotus_domino_rpc_auth_dos_vuln.nasl",
-            "2011/secpod_cubecart_mult_xss_and_sql_inj_vuln.nasl",
+            "2011/gb_ibm_lotus_domino_rpc_auth_dos_vuln.nasl",
+            "2011/gb_cubecart_mult_xss_and_sql_inj_vuln.nasl",
             "2016/gb_adobe_air_mult_vuln_feb16_macosx.nasl",
             "attic/gb_cybozu_garoon_mult_vuln_aug16.nasl",
             "2017/gb_openssh_mult_vuln_jan17_lin.nasl",

troubadix/standalone_plugins/changed_oid.py

@@ -23,16 +23,10 @@ from argparse import ArgumentParser, Namespace
 from pathlib import Path
 from typing import Iterable
 
+from troubadix.argparser import file_type_existing
 from troubadix.standalone_plugins.common import git
 
 
-def file_type(string: str) -> Path:
-    file_path = Path(string)
-    if not file_path.is_file():
-        raise ValueError(f"{string} is not a file.")
-    return file_path
-
-
 def parse_args(args: Iterable[str]) -> Namespace:
     parser = ArgumentParser(
         description="Check for changed oid",
@@ -52,7 +46,7 @@ def parse_args(args: Iterable[str]) -> Namespace:
         "-f",
         "--files",
         nargs="+",
-        type=file_type,
+        type=file_type_existing,
         default=[],
         help=(
             "List of files to diff. "

troubadix/standalone_plugins/dependency_graph/__init__.py

@@ -0,0 +1,2 @@
+# SPDX-License-Identifier: GPL-3.0-or-later
+# SPDX-FileCopyrightText: 2025 Greenbone AG

troubadix/standalone_plugins/dependency_graph/checks.py

@@ -0,0 +1,128 @@
+# SPDX-License-Identifier: GPL-3.0-or-later
+# SPDX-FileCopyrightText: 2025 Greenbone AG
+
+
+from collections import Counter
+
+import networkx as nx
+
+from .models import Result, Script
+
+
+def check_duplicates(scripts: list[Script]) -> Result:
+    """
+    checks for a script depending on a script multiple times
+    """
+    warnings = []
+    for script in scripts:
+        counter = Counter(dep.name for dep in script.dependencies)
+        duplicates = [dep for dep, count in counter.items() if count > 1]
+
+        if duplicates:
+            msg = f"Duplicate dependencies in {script.name}: {', '.join(duplicates)}"
+            warnings.append(msg)
+
+    return Result(name="check_duplicates", warnings=warnings)
+
+
+def check_missing_dependencies(
+    scripts: list[Script], graph: nx.DiGraph
+) -> Result:
+    """
+    Checks if any scripts that are depended on are missing from
+    the list of scripts created from the local file system,
+    logs the scripts dependending on the missing script
+    """
+    errors = []
+    dependencies = {
+        dep.name for script in scripts for dep in script.dependencies
+    }
+    script_names = {script.name for script in scripts}
+    missing_dependencies = dependencies - script_names
+
+    for missing in missing_dependencies:
+        depending_scripts = graph.predecessors(missing)
+        msg = f"missing dependency file: {missing}:"
+        for script in depending_scripts:
+            msg += f"\n  - used by: {script}"
+        errors.append(msg)
+
+    return Result(name="missing_dependencies", errors=errors)
+
+
+def check_cycles(graph) -> Result:
+    """
+    checks for cyclic dependencies
+    """
+    if nx.is_directed_acyclic_graph(graph):
+        return Result(name="check_cycles")
+
+    cycles = nx.simple_cycles(graph)
+
+    errors = [f"cyclic dependency: {cycle}" for cycle in cycles]
+    return Result(name="check_cycles", errors=errors)
+
+
+def cross_feed_dependencies(
+    graph, is_enterprise_checked: bool
+) -> list[tuple[str, str]]:
+    """
+    creates a list of script and dependency for scripts
+    in community feed that depend on scripts in enterprise folders
+    """
+    cross_feed_dependencies = [
+        (u, v)
+        for u, v, is_enterprise_feed in graph.edges.data("is_enterprise_feed")
+        if graph.nodes[u]["feed"] == "community"
+        and graph.nodes[v].get("feed", "unknown") == "enterprise"
+        and is_enterprise_feed == is_enterprise_checked
+    ]  # unknown as standard value due to non existent nodes not having a feed value
+    return cross_feed_dependencies
+
+
+def check_cross_feed_dependencies(graph) -> Result:
+    """
+    Checks if scripts in the community feed have dependencies to enterprise scripts,
+    and if they are correctly contained within a is_enterprise_feed check.
+    """
+    gated_cfd = cross_feed_dependencies(graph, is_enterprise_checked=True)
+    warnings = [
+        f"cross-feed-dependency: {dependent}(community feed) "
+        f"depends on {dependency}(enterprise feed)"
+        for dependent, dependency in gated_cfd
+    ]
+
+    ungated_cfd = cross_feed_dependencies(graph, is_enterprise_checked=False)
+    errors = [
+        f"unchecked cross-feed-dependency: {dependent}(community feed) "
+        f"depends on {dependency}(enterprise feed), but the current feed is not properly checked"
+        for dependent, dependency in ungated_cfd
+    ]
+
+    return Result(
+        name="check_cross_feed_dependencies", warnings=warnings, errors=errors
+    )
+
+
+def check_category_order(graph) -> Result:
+    problematic_edges = [
+        (dependent, dependency)
+        for dependent, dependency in graph.edges()
+        if graph.nodes[dependent]["category"]
+        < graph.nodes[dependency].get("category", -1)
+    ]
+
+    errors = [
+        f"{dependent} depends on {dependency} which has a lower category order"
+        for dependent, dependency in problematic_edges
+    ]
+    return Result(name="check_category_order", errors=errors)
+
+
+def check_deprecated_dependencies(graph) -> Result:
+    errors = [
+        f"{dependent} depends on deprecated script {dependency}"
+        for dependent, dependency in graph.edges()
+        if graph.nodes[dependency].get("deprecated", False)
+    ]
+    return Result(name="check_deprecated_dependencies", errors=errors)

troubadix/standalone_plugins/dependency_graph/cli.py

@@ -0,0 +1,58 @@
+# SPDX-License-Identifier: GPL-3.0-or-later
+# SPDX-FileCopyrightText: 2025 Greenbone AG
+
+
+import os
+from argparse import ArgumentParser, ArgumentTypeError, Namespace
+from pathlib import Path
+
+from troubadix.argparser import directory_type_existing
+
+from .models import Feed
+
+
+def feed_type(value: str) -> Feed:
+    try:
+        return Feed[value.upper()]
+    except KeyError:
+        raise ArgumentTypeError(f"Invalid Feed value: '{value}'")
+
+
+def parse_args() -> Namespace:
+    parser = ArgumentParser(
+        description="Tool for analysing the dependencies in the NASL repository.",
+    )
+    parser.add_argument(
+        "-r",
+        "--root",
+        type=directory_type_existing,
+        help="root for nasl directory that should be linted, uses $VTDIR if no path is given",
+    )
+    parser.add_argument(
+        "-f",
+        "--feed",
+        type=feed_type,
+        choices=Feed,
+        nargs="+",
+        default=[Feed.FULL],
+        help="feed",
+    )
+    parser.add_argument(
+        "--log",
+        default="WARNING",
+        help="Set the logging level (INFO, WARNING, ERROR)",
+    )
+    parser.add_argument("-v", "--verbose", action="count", default=0)
+
+    args = parser.parse_args()
+
+    if not args.root:
+        vtdir = os.environ.get("VTDIR")
+        if not vtdir:
+            raise ValueError(
+                "The environment variable 'VTDIR' is not set,"
+                " and no root path with '--root' was provided."
+            )
+        args.root = Path(vtdir)
+
+    return args

troubadix/standalone_plugins/dependency_graph/dependency_graph.py

@@ -0,0 +1,212 @@
+# SPDX-License-Identifier: GPL-3.0-or-later
+# SPDX-FileCopyrightText: 2025 Greenbone AG
+
+
+import logging
+import re
+import sys
+from functools import reduce
+from pathlib import Path
+
+import networkx as nx
+
+from troubadix.helper import CURRENT_ENCODING
+from troubadix.helper.helper import is_enterprise_folder
+from troubadix.helper.patterns import (
+    ScriptTag,
+    SpecialScriptTag,
+    _get_special_script_tag_pattern,
+    get_script_tag_pattern,
+    get_special_script_tag_pattern,
+)
+from troubadix.plugins.dependencies import split_dependencies
+from troubadix.plugins.dependency_category_order import (
+    VTCategory,
+)
+
+from .checks import (
+    check_category_order,
+    check_cross_feed_dependencies,
+    check_cycles,
+    check_deprecated_dependencies,
+    check_duplicates,
+    check_missing_dependencies,
+)
+from .cli import Feed, parse_args
+from .models import Dependency, Result, Script
+
+DEPENDENCY_PATTERN = _get_special_script_tag_pattern(
+    "dependencies", flags=re.DOTALL | re.MULTILINE
+)
+CATEGORY_PATTERN = get_special_script_tag_pattern(SpecialScriptTag.CATEGORY)
+DEPRECATED_PATTERN = get_script_tag_pattern(ScriptTag.DEPRECATED)
+ENTERPRISE_FEED_CHECK_PATTERN = re.compile(
+    r'if\s*\(FEED_NAME\s*==\s*"GSF"\s*\|\|\s*FEED_NAME\s*==\s*"GEF"\s*\|\|\s*FEED_NAME\s*==\s*"SCM"\)\s*'
+    r"(?:\{[^}]*\}\s*|[^\{;]*;)"
+)  # Matches specific if blocks used to gate code to run only for enterprise feeds
+
+
+class Reporter:
+    def __init__(self, verbosity) -> None:
+        self.verbosity = verbosity
+
+    def report(self, results: list[Result]):
+        for result in results:
+            if self.verbosity >= 2:
+                self.print_statistic(result)
+                self.print_divider()
+            if self.verbosity >= 1:
+                self.print_warnings(result)
+            self.print_errors(result)
+            if self.verbosity >= 2:
+                self.print_divider("=")
+
+    def print_divider(self, char="-", length=40):
+        print(char * length)
+
+    def print_statistic(self, result: Result):
+        print(
+            f"{result.name} - warnings: {len(result.warnings)}, errors: {len(result.errors)}"
+        )
+
+    def print_warnings(self, result: Result):
+        for warning in result.warnings:
+            print(f"warning: {warning}")
+
+    def print_errors(self, result: Result):
+        for error in result.errors:
+            print(f"error: {error}")
+
+
+def get_feed(root, feeds: list[Feed]) -> list[Script]:
+    feed = reduce((lambda x, y: x | y), feeds)
+    scripts = []
+    if feed & Feed.COMMON:
+        scripts.extend(get_scripts(root / "common"))
+    if feed & Feed.FEED_21_04:
+        scripts.extend(get_scripts(root / "21.04"))
+    if feed & Feed.FEED_22_04:
+        scripts.extend(get_scripts(root / "22.04"))
+
+    return scripts
+
+
+def get_scripts(directory: Path) -> list[Script]:
+    scripts = []
+
+    for path in directory.rglob("*.nasl"):
+        try:
+            content = path.read_text(encoding=CURRENT_ENCODING)
+        except Exception as e:
+            logging.error(f"Error reading file {path}: {e}")
+            continue
+
+        try:
+            relative_path = path.relative_to(directory)  # used as identifier
+            name = str(relative_path)
+            feed = determine_feed(relative_path)
+            dependencies = extract_dependencies(content)
+            category = extract_category(content)
+            deprecated = bool(DEPRECATED_PATTERN.search(content))
+            scripts.append(
+                Script(name, feed, dependencies, category, deprecated)
+            )
+        except Exception as e:
+            logging.error(f"Error processing {path}: {e}")
+
+    return scripts
+
+
+def determine_feed(script_relative_path: Path) -> str:
+    parts = script_relative_path.parts
+    if is_enterprise_folder(parts[0]):
+        return "enterprise"
+    else:
+        return "community"
+
+
+def extract_dependencies(content: str) -> list[Dependency]:
+    dependencies = []
+
+    if_blocks = [
+        (match.start(), match.end())
+        for match in ENTERPRISE_FEED_CHECK_PATTERN.finditer(content)
+    ]
+
+    for match in DEPENDENCY_PATTERN.finditer(content):
+        start, end = match.span()
+        is_enterprise_feed = any(
+            start >= block_start and end <= block_end
+            for block_start, block_end in if_blocks
+        )
+        dep_list = split_dependencies(match.group("value"))
+        dependencies.extend(
+            Dependency(dep, is_enterprise_feed) for dep in dep_list
+        )
+
+    return dependencies
+
+
+def extract_category(content) -> int:
+    match = CATEGORY_PATTERN.search(content)
+    category_value = match.group("value")
+    return VTCategory[category_value]
+
+
+def create_graph(scripts: list[Script]):
+    graph = nx.DiGraph()
+
+    # Add nodes and edges based on dependencies
+    for script in scripts:
+        # explicit add incase the script has no dependencies
+        graph.add_node(
+            script.name,
+            feed=script.feed,
+            category=script.category,
+            deprecated=script.deprecated,
+        )
+        for dependency in script.dependencies:
+            graph.add_edge(
+                script.name,
+                dependency.name,
+                is_enterprise_feed=dependency.is_enterprise_feed,
+            )
+    return graph
+
+
+def main():
+    args = parse_args()
+
+    logging.basicConfig(
+        level=args.log.upper(), format="%(levelname)s: %(message)s"
+    )
+
+    logging.info("starting troubadix dependency analysis")
+
+    scripts = get_feed(args.root, args.feed)
+    graph = create_graph(scripts)
+
+    logging.info(f"nodes (scripts) in graph: {graph.number_of_nodes()}")
+    logging.info(f"edges (dependencies) in graph: {graph.number_of_edges()}")
+
+    results = [
+        check_duplicates(scripts),
+        check_missing_dependencies(scripts, graph),
+        check_cycles(graph),
+        check_cross_feed_dependencies(graph),
+        check_category_order(graph),
+        check_deprecated_dependencies(graph),
+    ]
+    reporter = Reporter(args.verbose)
+    reporter.report(results)
+
+    if any(result.errors for result in results):
+        return 1
+    elif any(result.warnings for result in results):
+        return 2
+    else:
+        return 0
+
+
+if __name__ == "__main__":
+    sys.exit(main())

troubadix/standalone_plugins/dependency_graph/models.py

@@ -0,0 +1,40 @@
+# SPDX-License-Identifier: GPL-3.0-or-later
+# SPDX-FileCopyrightText: 2025 Greenbone AG
+
+from dataclasses import dataclass, field
+from enum import Flag, auto
+
+
+class Feed(Flag):
+    COMMON = auto()
+    FEED_21_04 = auto()
+    FEED_22_04 = auto()
+    FULL = COMMON | FEED_21_04 | FEED_22_04
+
+    def __str__(self):
+        # Make enum values user-friendly for argparse help
+        return self.name.lower()
+
+
+@dataclass
+class Dependency:
+    name: str
+    # Indicates whether the dependency will only run if an enterprise feed is used.
+    # Controlled by a specific if check. Does not indicate the script's feed.
+    is_enterprise_feed: bool
+
+
+@dataclass
+class Script:
+    name: str
+    feed: str
+    dependencies: list[Dependency]
+    category: int
+    deprecated: bool
+
+
+@dataclass
+class Result:
+    name: str
+    warnings: list[str] = field(default_factory=list)
+    errors: list[str] = field(default_factory=list)

troubadix/standalone_plugins/deprecate_vts.py

@@ -2,7 +2,7 @@
 # SPDX-FileCopyrightText: 2024 Greenbone AG
 
 import re
-from argparse import ArgumentParser, ArgumentTypeError, Namespace
+from argparse import ArgumentParser, Namespace
 from dataclasses import dataclass
 from enum import Enum
 from pathlib import Path
@@ -10,7 +10,7 @@ from typing import Iterable, Optional
 
 from pontos.terminal.terminal import ConsoleTerminal
 
-from troubadix.argparser import directory_type, file_type
+from troubadix.argparser import directory_type, file_type, file_type_existing
 from troubadix.helper.patterns import (
     ScriptTag,
     SpecialScriptTag,
@@ -37,15 +37,6 @@ class DeprecatedFile:
 KB_ITEMS_PATTERN = re.compile(r"set_kb_item\(.+\);")
 
 
-def existing_file_type(string: str) -> Path:
-    file_path = Path(string)
-    if not file_path.exists():
-        raise ArgumentTypeError(f'File "{string}" does not exist.')
-    if not file_path.is_file():
-        raise ArgumentTypeError(f'"{string}" is not a file.')
-    return file_path
-
-
 def update_summary(file: DeprecatedFile, deprecation_reason: str) -> str:
     """Update the summary of the nasl script by adding the information
     that the script has been deprecated, and if possible, the oid of
@@ -232,7 +223,7 @@ def parse_args(args: Iterable[str] = None) -> Namespace:
         "--from-file",
         metavar="<from_file>",
         default=None,
-        type=existing_file_type,
+        type=file_type_existing,
         help=(
             "Path to a single file that contains a list of files "
             "to be deprecated, separated by new lines."

troubadix/standalone_plugins/file_extensions.py

@@ -7,19 +7,7 @@ from argparse import ArgumentParser, Namespace
 from pathlib import Path
 from typing import List
 
-
-def directory_type(string: str) -> Path:
-    directory_path = Path(string)
-    if not directory_path.is_dir():
-        raise ValueError(f"{string} is not a directory.")
-    return directory_path
-
-
-def file_type(string: str) -> Path:
-    file_path = Path(string)
-    if not file_path.is_file():
-        raise ValueError(f"{string} is not a file.")
-    return file_path
+from troubadix.argparser import directory_type_existing, file_type_existing
 
 
 def parse_args() -> Namespace:
@@ -28,11 +16,11 @@ def parse_args() -> Namespace:
     )
     parser.add_argument(
         "dir",
-        type=directory_type,
+        type=directory_type_existing,
         help="directory that should be linted",
     )
     parser.add_argument(
-        "--ignore-file", type=file_type, help="path to ignore file"
+        "--ignore-file", type=file_type_existing, help="path to ignore file"
     )
     parser.add_argument(
         "--gen-ignore-entries",

troubadix/standalone_plugins/last_modification.py

@@ -20,13 +20,14 @@
 import datetime
 import re
 import sys
-from argparse import ArgumentParser, ArgumentTypeError, Namespace
+from argparse import ArgumentParser, Namespace
 from pathlib import Path
 from typing import Iterable, Sequence
 
 from pontos.terminal import Terminal
 from pontos.terminal.terminal import ConsoleTerminal
 
+from troubadix.argparser import file_type_existing
 from troubadix.helper import CURRENT_ENCODING
 from troubadix.helper.patterns import (
     LAST_MODIFICATION_ANY_VALUE_PATTERN,
@@ -35,15 +36,6 @@ from troubadix.helper.patterns import (
 from troubadix.troubadix import from_file
 
 
-def existing_file_type(string: str) -> Path:
-    file_path = Path(string)
-    if not file_path.exists():
-        raise ArgumentTypeError(f'File "{string}" does not exist.')
-    if not file_path.is_file():
-        raise ArgumentTypeError(f'"{string}" is not a file.')
-    return file_path
-
-
 def update(nasl_file: Path, terminal: Terminal):
     file_content = nasl_file.read_text(encoding=CURRENT_ENCODING)
 
@@ -104,12 +96,12 @@ def parse_args(args: Sequence[str] = None) -> Namespace:
     what_group.add_argument(
         "--files",
         nargs="+",
-        type=existing_file_type,
+        type=file_type_existing,
         help="List of files that should be updated",
     )
     what_group.add_argument(
         "--from-file",
-        type=existing_file_type,
+        type=file_type_existing,
         help=(
             "Pass a file that contains a List of files "
             "containing paths to files, that should be "

troubadix/standalone_plugins/no_solution.py

@@ -25,6 +25,7 @@ from typing import Iterable, Optional, Tuple
 
 from pontos.terminal.terminal import ConsoleTerminal
 
+from troubadix.argparser import directory_type_existing
 from troubadix.helper import CURRENT_ENCODING
 from troubadix.helper.patterns import (
     ScriptTag,
@@ -49,13 +50,6 @@ CREATION_DATE_FORMAT = "%Y-%m-%d"
 MONTH_AS_DAYS = 365 / 12
 
 
-def directory_type(string: str) -> Path:
-    file_path = Path(string)
-    if not file_path.is_dir():
-        raise ValueError(f"{string} is not a directory.")
-    return file_path
-
-
 def parse_solution_date(date_string: str) -> datetime:
     """Convert date string to date trying different formats"""
 
@@ -83,7 +77,7 @@ def parse_args() -> Namespace:
         "-d",
         "--directory",
         dest="directory",
-        type=directory_type,
+        type=directory_type_existing,
         help="Specify the directory to scan for nasl scripts",
     )
 

troubadix/standalone_plugins/version_updated.py

@@ -23,6 +23,7 @@ from argparse import ArgumentParser, Namespace
 from pathlib import Path
 from typing import Iterable, List
 
+from troubadix.argparser import file_type_existing
 from troubadix.helper import is_ignore_file
 from troubadix.helper.patterns import (
     LAST_MODIFICATION_ANY_VALUE_PATTERN,
@@ -46,13 +47,6 @@ _IGNORE_FILES = [
 ]
 
 
-def file_type(string: str) -> Path:
-    file_path = Path(string)
-    if not file_path.is_file():
-        raise ValueError(f"{string} is not a file.")
-    return file_path
-
-
 def parse_args(args: Iterable[str]) -> Namespace:
     parser = ArgumentParser(
         description="Check for changed files that did not alter "
@@ -73,7 +67,7 @@ def parse_args(args: Iterable[str]) -> Namespace:
         "-f",
         "--files",
         nargs="+",
-        type=file_type,
+        type=file_type_existing,
         default=[],
         help=(
             "List of files to diff. "

{troubadix-25.2.4.dist-info → troubadix-25.3.1.dist-info}/METADATA

@@ -1,6 +1,6 @@
 Metadata-Version: 2.3
 Name: troubadix
-Version: 25.2.4
+Version: 25.3.1
 Summary: A linting and QA check tool for NASL files
 License: GPL-3.0-or-later
 Author: Greenbone
@@ -21,6 +21,7 @@ Requires-Dist: chardet (>=4,<6)
 Requires-Dist: charset-normalizer (>=3.2.0,<4.0.0)
 Requires-Dist: codespell (==2.4.1)
 Requires-Dist: gitpython (>=3.1.31,<4.0.0)
+Requires-Dist: networkx (>=3.4.2,<4.0.0)
 Requires-Dist: pontos (>=22.7,<26.0)
 Requires-Dist: python-magic (>=0.4.25,<0.5.0)
 Requires-Dist: validators (>=0.34.0,<0.35.0)

{troubadix-25.2.4.dist-info → troubadix-25.3.1.dist-info}/RECORD

@@ -1,9 +1,9 @@
 troubadix/__init__.py,sha256=K7sIXXDrC7YRb7BvIpdQ6ZfG_QkT0qUH_wAlHROVRfM,716
-troubadix/__version__.py,sha256=0rtl7FCxri_EKhq7P0zjkdiQB0I5q7mLzGfDW6PDcZ0,103
-troubadix/argparser.py,sha256=OFLyj2gUOdVUrN_DSyzSlhhkV0ti77naUvDcGVNUjtU,6929
+troubadix/__version__.py,sha256=6NCjh_0ChAOoHShs27iMDdEnzibZHYvZIc4km_AUJTA,103
+troubadix/argparser.py,sha256=-H07Jhqh68_M4Mbjq9qJjTr3MShy_N2pxl2qHA6cfRU,7481
 troubadix/codespell/codespell.additions,sha256=NAYnQF79kdk4YhU_h8fpjAVVkqBm778aPHPPP7FEkZY,504
-troubadix/codespell/codespell.exclude,sha256=x7I4HG9cvG5QZuMJXtAiVavjQBpr-wtxPrrYoUDknnY,145525
-troubadix/codespell/codespell.ignore,sha256=jeOZuryNNiKgj_KCr4-H2ff18wlCE5jo0vTTRUk4p4Q,1367
+troubadix/codespell/codespell.exclude,sha256=RS0PH7Px2NRg40UpreuXfnInaC4veaeeDxP1FNac4ms,147431
+troubadix/codespell/codespell.ignore,sha256=2CP8u6O2VENcDpt2FfEDNmfa1Eh3D80yeYHT54GM1X4,1512
 troubadix/helper/__init__.py,sha256=tp2fPLzwGEA_2eiJbvuePiY6rjYSFxx7VUsCV4fSwvw,1110
 troubadix/helper/helper.py,sha256=GXapYLii2rLKwkX2ok31YoAdUSizBnyPjWz-aPP6HM8,3105
 troubadix/helper/linguistic_exception_handler.py,sha256=Bq7ULjDdWTKUpFNTUX6XMPdD4s4v8eIjZPyqBe8VLws,6811
@@ -13,10 +13,10 @@ troubadix/plugins/__init__.py,sha256=V5fHMg2qVWIYKVZJqHKpzgrQ5x87Pz5u-h-CxOx7Dls
 troubadix/plugins/badwords.py,sha256=k1A1d2pdXzie87FGGXrykP2BgdZbY5QtmQItupHtNyw,4701
 troubadix/plugins/copyright_text.py,sha256=jYsLWmTbT_A78XQQxQFK-5kMMHkh3xdvlh7mEF2dZGU,3583
 troubadix/plugins/copyright_year.py,sha256=XzM9MHVzOXwNLwHpfuaWj8PUOmswr56SBVOLBdvxjd4,5478
-troubadix/plugins/creation_date.py,sha256=61vF871P2qdB0TE8g__BwgHHbs4ffxVmUmM3YAiy9GE,3357
+troubadix/plugins/creation_date.py,sha256=TyYnbCdmuBuPYNE79Y5hnoQUr5BIOnvJwpHovu8xE98,3793
 troubadix/plugins/cve_format.py,sha256=Ue6b9RzuQZWOdBd6y5ruqdEq2zyRb2_FSUQScnjHOUQ,3400
 troubadix/plugins/cvss_format.py,sha256=GrZfZxkxSh9OVixmBBnHQ4NzF9nN2tCK1vepz_-U60g,2309
-troubadix/plugins/dependencies.py,sha256=eW6uOThTF8WfBbkZYAZ3BW34_WJ87IAETJLe1dcEO2Q,4118
+troubadix/plugins/dependencies.py,sha256=zLCioIiHlBYO6ViO3vXOIQboESyHaIQ9y6pSuoYP9aU,4118
 troubadix/plugins/dependency_category_order.py,sha256=CrEWJHDeuD4zdSnKghsjf_D5EICQDN2Dv72OsVrYgnU,7010
 troubadix/plugins/deprecated_dependency.py,sha256=TFTe9fO4A0S3JTXpxdHaVnQ9ZSHR3lLQjggS_FjGY-s,3831
 troubadix/plugins/deprecated_functions.py,sha256=6e46woXd-3hUBnnuIXLlaqlcP6F7c99Y0ZGeXfsbQYc,2568
@@ -57,14 +57,14 @@ troubadix/plugins/security_messages.py,sha256=EPu3-YB0iP5_hfbQjrfvvTrQRiPgDjC85G
 troubadix/plugins/set_get_kb_calls.py,sha256=WGu1CKLjn3VhbDo33IJ4TtWQ-kz9gInkJskTqOSMM6k,3415
 troubadix/plugins/solution_text.py,sha256=4Gs84Qsyg-1iTDP7Y7o8Bo5AH4hKlwGPW0NfwMpx2fU,5852
 troubadix/plugins/solution_type.py,sha256=6wq7lj0bCL6tTaZ-d_aGKq6a_jVlCD73GltHJsJhmm8,2602
-troubadix/plugins/spaces_before_dots.py,sha256=83bVH4dxJPsNyd53kEX8fnDEge9R6kjAHdOnrDB7L9w,4852
+troubadix/plugins/spaces_before_dots.py,sha256=8metqLHLN3y259CzZckrglatwA0Uwn4mvV_bkFZZbT4,4844
 troubadix/plugins/spaces_in_filename.py,sha256=v8OqzzZSeI4_iXATHYzkf-HoAMxc_xb2Nj0HPAVevpk,611
 troubadix/plugins/spelling.py,sha256=3AW5sNtLL67OthKLaCH_y2HCVJ5YH_eyF9xjTJMIDG4,9593
 troubadix/plugins/tabs.py,sha256=7zXaTZe4cZoZvrLyqntVfTeNN_W3D8dfQl67QevXxtc,1319
 troubadix/plugins/todo_tbd.py,sha256=MN5fFwBhPmt3JDQ2Hx20B8yUy1vz7LIZC3rDIOzfW9M,1758
 troubadix/plugins/trailing_spaces_tabs.py,sha256=nMly8ZsmGprxHvwCDclKBDRB0eq6JEkjERYKvtStkY4,1873
 troubadix/plugins/using_display.py,sha256=Hd-eysbXlkQb4M-ywzSd784k3aBSiG_sO6Ou0JdbyJA,4046
-troubadix/plugins/valid_oid.py,sha256=2xL_i8YVF1k3FG7hOH9PVavAveZxu58ciLXHG6lq1pg,17937
+troubadix/plugins/valid_oid.py,sha256=LteBZOW35Ml8awjVShaPrmPwpsIkCX7GfiwWKLk09Ts,17929
 troubadix/plugins/valid_script_tag_names.py,sha256=6uMJsBdV-Zx-k1F2_MWmQPHXNo1u0ifuosbftbg-27E,3447
 troubadix/plugins/variable_assigned_in_if.py,sha256=NNz8iuzyQ4rSM6My4WYC1s5TABQqgs7us15PkDA-VV0,3285
 troubadix/plugins/variable_redefinition_in_foreach.py,sha256=SfaA70TkpD9dsvNbhwJEA3eLAHWvj4YwksN-qeBMowg,2470
@@ -76,7 +76,7 @@ troubadix/runner.py,sha256=RHyZe7YMBzJpCGBVfBUg2BMkVi13CmI9u0DVG2z4518,5195
 troubadix/standalone_plugins/__init__.py,sha256=kUR5RAFc7HCeiqdlX36dZOHkUI5wI6V_43RpEcD8b-0,22
 troubadix/standalone_plugins/allowed_rev_diff.py,sha256=5Zc8xTZlkMOPVNRdxNkosFFtwaQ6J8RiJYzaYXEuN40,4145
 troubadix/standalone_plugins/changed_cves.py,sha256=nEWwDa33QXekvpwcmnGMrdPHrJISz9p9j6lX09teDlk,2921
-troubadix/standalone_plugins/changed_oid.py,sha256=TxZ-fh6p10B17gzIapyrHYZbuWvq9PMHDjqx1lAPTN4,4047
+troubadix/standalone_plugins/changed_oid.py,sha256=9eLvuBuPgZYnHHst-Y-J0TgCcgwmlOWjszWJ57kG9cg,3934
 troubadix/standalone_plugins/changed_packages/changed_packages.py,sha256=tyNwpJgaZS2o0X6xywXAQ_i7LB9HsEQYbDZ3Tcvtsdo,5742
 troubadix/standalone_plugins/changed_packages/marker/__init__.py,sha256=Le59j2KcaXez1MIPjZ8GDJmSuLGkOVI3k2-BWO30Bc0,993
 troubadix/standalone_plugins/changed_packages/marker/added_epoch.py,sha256=PfnG5B1v8SwOJw3ez-eb794PT7k-O4hJKDHMSd9lwNo,1797
@@ -87,14 +87,19 @@ troubadix/standalone_plugins/changed_packages/marker/dropped_architecture.py,sha
 troubadix/standalone_plugins/changed_packages/marker/marker.py,sha256=7uZXR2Ds_8soB_2wugCkOSz_3hoX03KMh2NAW0G5Dzg,1278
 troubadix/standalone_plugins/changed_packages/package.py,sha256=Pcr2tcwiPTzD3jB0iteqA7-TajL-dl5Onh1dvC_H9xk,2743
 troubadix/standalone_plugins/common.py,sha256=PkScV-lisNY4WyrzwjV3dK1DF26hJv5JXTcREblJ0v0,1028
-troubadix/standalone_plugins/deprecate_vts.py,sha256=iRYHA1_Uf1zRs0ExwNfo7Z6Jt6eSP4WBKwM6s2GyqeQ,7891
-troubadix/standalone_plugins/file_extensions.py,sha256=QLQt02WIc4SWLDTKKnG8q2g-atC7Mgus-opuXf_SX1A,2630
-troubadix/standalone_plugins/last_modification.py,sha256=iwT11m5O1UXXZl6XaxQ0umdaydqid9rPWgXYTsigxwI,4596
-troubadix/standalone_plugins/no_solution.py,sha256=81r20kP8otRob2NTaCea-sgVRIM6ARvhddFdibsG6Ao,8877
-troubadix/standalone_plugins/version_updated.py,sha256=RlzVuXgFOvcjrRTOhiTYlmzV4vvcn7ntCz0lDTjePMU,4316
+troubadix/standalone_plugins/dependency_graph/__init__.py,sha256=SQSaQXWmpq5-5ozpqMgvnvoYTK8oj64A5kie1m_5bWQ,88
+troubadix/standalone_plugins/dependency_graph/checks.py,sha256=nrpY2cyQlRb-A6gbVq-1bQEYlanNdOJwfX4liwjiN6Q,4249
+troubadix/standalone_plugins/dependency_graph/cli.py,sha256=osTVMWknVo_jWmlaYtRM-qcE88c_YVcT1my-jnFdxiM,1510
+troubadix/standalone_plugins/dependency_graph/dependency_graph.py,sha256=TB54FTBFlt2iNDqLrlYj9AO04ntS7DN44ASMwfbJWy8,6257
+troubadix/standalone_plugins/dependency_graph/models.py,sha256=bEvj71inolH-_NLv1fEHMYF8tH9ck-T0jIlThR91uPM,918
+troubadix/standalone_plugins/deprecate_vts.py,sha256=mLt2DV9Y1YAEuh6c4nFweZYIOprsBzO7115dihEn4lA,7602
+troubadix/standalone_plugins/file_extensions.py,sha256=fqswrhCcQqygIszcnobS9hFQmSpv3gDkvlufoaTckBg,2355
+troubadix/standalone_plugins/last_modification.py,sha256=ROzwVzzYilXJ0llVt4Lv0w8b9BJKoahl6YxPDiub614,4338
+troubadix/standalone_plugins/no_solution.py,sha256=p_-az9Igl4GH6HnhLLYbYlWIiEP64OTQLpX-z3JAshs,8760
+troubadix/standalone_plugins/version_updated.py,sha256=6YHF0OjL5NWszQdsSh7XzlSji1e6Uaqwu_Y6m3R0mvI,4203
 troubadix/troubadix.py,sha256=5__Jz3bYSrya4aG6RCBWxqnsDepXfwXZ3v0bjCzEFi0,6039
-troubadix-25.2.4.dist-info/LICENSE,sha256=OXLcl0T2SZ8Pmy2_dmlvKuetivmyPd5m1q-Gyd-zaYY,35149
-troubadix-25.2.4.dist-info/METADATA,sha256=oF9NJHFgDYqKnI0OZD1ETp_kSBPJ0vcF47kTB6HUsYU,4421
-troubadix-25.2.4.dist-info/WHEEL,sha256=XbeZDeTWKc1w7CSIyre5aMDU_-PohRwTQceYnisIYYY,88
-troubadix-25.2.4.dist-info/entry_points.txt,sha256=LplOk4nzKrS4B8Jz0SPkQLPlIDesdraCO8Vp_eoycpc,737
-troubadix-25.2.4.dist-info/RECORD,,
+troubadix-25.3.1.dist-info/LICENSE,sha256=OXLcl0T2SZ8Pmy2_dmlvKuetivmyPd5m1q-Gyd-zaYY,35149
+troubadix-25.3.1.dist-info/METADATA,sha256=-j187jjk4eNelTKbSS-JY83GusMFSSko5FZavym8RUM,4462
+troubadix-25.3.1.dist-info/WHEEL,sha256=XbeZDeTWKc1w7CSIyre5aMDU_-PohRwTQceYnisIYYY,88
+troubadix-25.3.1.dist-info/entry_points.txt,sha256=SnhEUe4W76P-ADmO9J355gRztTyHU_PTxRewKy3-e5o,832
+troubadix-25.3.1.dist-info/RECORD,,

{troubadix-25.2.4.dist-info → troubadix-25.3.1.dist-info}/entry_points.txt

@@ -4,6 +4,7 @@ troubadix-allowed-rev-diff=troubadix.standalone_plugins.allowed_rev_diff:main
 troubadix-changed-cves=troubadix.standalone_plugins.changed_cves:main
 troubadix-changed-oid=troubadix.standalone_plugins.changed_oid:main
 troubadix-changed-packages=troubadix.standalone_plugins.changed_packages.changed_packages:main
+troubadix-dependency-graph=troubadix.standalone_plugins.dependency_graph.dependency_graph:main
 troubadix-deprecate-vts=troubadix.standalone_plugins.deprecate_vts:main
 troubadix-file-extensions=troubadix.standalone_plugins.file_extensions:main
 troubadix-last-modification=troubadix.standalone_plugins.last_modification:main