get-cve 0.2.0

Tyr tools for CVE managing about installed products and their weaknesses
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48

# Tyr - get-cve

## Installation
`cargo install get-cve`

## Purpose
This command line utility allows to explore fixed CVE on debian/redhat like OS.

The exploration is based on their changelog.

`git-cve` don't download CVE database to explore all open CVE on a package. There are several other good tools for this exploration.

## Usage
To explore all fixed CVE for an installed package:
```[bash,source]
get-cve <package>
```
or if several version are installing:
```[bash, source]
get-cve <package>=<version>
```
Eg:
```[bash, source]
# get-cve less
[less => 590-1ubuntu0.22.04.3]
CVE-2014-9488
CVE-2022-46663
CVE-2022-48624
CVE-2024-32487
#
```
To explore all options run `get-cve help`

## Future features
- [x] explore the next available release for a package,
- [x] explore the local changelog with an alternative way,
- [x] applies a filter on CVE list (eg: `get-cve less --filter 2022`, for showing only CVE of year 2022)

## Authors and acknowledgment
Help will be appreciated. All tools will be developed with rust technology.

## License
This project is under MIT license.

## Project status
This project is under development and all contributions are welcome.

These tools are provided without any guaranties.