更新: 103 个文件 - 2026-03-18 19:24:37

08-threat-intel/generated/dashboard/docs/retired-sources.html

@@ -193,26 +193,13 @@
   {
     "system_id": "drupal",
     "display_name": "Drupal",
-    "source_name": "Drupal Security Advisories Site",
-    "bucket": "ecosystem_sources",
-    "kind": "html-links",
-    "retired_reason": "Drupal security index page became unstable for repeated HTML scraping; RSS + GHSA replacement is used for active monitoring.",
+    "source_name": "NVD Drupal",
+    "bucket": "official_sources",
+    "kind": "nvd-search",
+    "retired_reason": "OSV Drupal + Drupal official RSS now cover machine-readable collection with lower cold-start latency than NVD public search.",
     "replacement_sources": [
       "Drupal Security Advisories RSS",
-      "GHSA Drupal Core"
-    ],
-    "url": "https://www.drupal.org/security"
-  },
-  {
-    "system_id": "drupal",
-    "display_name": "Drupal",
-    "source_name": "GHSA Drupal Core",
-    "bucket": "ecosystem_sources",
-    "kind": "ghsa-global",
-    "retired_reason": "Unauthenticated GHSA API requests are rate-limited in daily monitoring; RSS and NVD remain active replacements.",
-    "replacement_sources": [
-      "Drupal Security Advisories RSS",
-      "NVD Drupal"
+      "OSV Drupal"
     ],
     "url": ""
   },
@@ -228,6 +215,18 @@
     ],
     "url": ""
   },
+  {
+    "system_id": "esbuild",
+    "display_name": "esbuild",
+    "source_name": "NVD esbuild",
+    "bucket": "ecosystem_sources",
+    "kind": "nvd-search",
+    "retired_reason": "OSV esbuild replaces NVD public search for lower-latency machine-readable collection.",
+    "replacement_sources": [
+      "OSV esbuild"
+    ],
+    "url": ""
+  },
   {
     "system_id": "express",
     "display_name": "Express",
@@ -240,6 +239,18 @@
     ],
     "url": ""
   },
+  {
+    "system_id": "express",
+    "display_name": "Express",
+    "source_name": "NVD Express.js",
+    "bucket": "ecosystem_sources",
+    "kind": "nvd-search",
+    "retired_reason": "OSV Express replaces NVD public search for lower-latency machine-readable collection.",
+    "replacement_sources": [
+      "OSV Express"
+    ],
+    "url": ""
+  },
   {
     "system_id": "fastify",
     "display_name": "Fastify",
@@ -264,6 +275,19 @@
     ],
     "url": ""
   },
+  {
+    "system_id": "ghost",
+    "display_name": "Ghost",
+    "source_name": "NVD Ghost",
+    "bucket": "official_sources",
+    "kind": "nvd-search",
+    "retired_reason": "OSV Ghost replaces NVD for machine-readable collection and keeps npm package alignment.",
+    "replacement_sources": [
+      "Ghost GitHub Advisories",
+      "OSV Ghost"
+    ],
+    "url": ""
+  },
   {
     "system_id": "hapi",
     "display_name": "Hapi",
@@ -288,6 +312,19 @@
     ],
     "url": "https://www.haproxy.org/security/"
   },
+  {
+    "system_id": "joomla",
+    "display_name": "Joomla",
+    "source_name": "NVD Joomla",
+    "bucket": "official_sources",
+    "kind": "nvd-search",
+    "retired_reason": "OSV Joomla CMS replaces NVD for machine-readable collection without public NVD throttling.",
+    "replacement_sources": [
+      "Joomla Security Centre",
+      "OSV Joomla"
+    ],
+    "url": ""
+  },
   {
     "system_id": "koa",
     "display_name": "Koa",
@@ -324,6 +361,19 @@
     ],
     "url": "https://mattermost.com/security-updates/"
   },
+  {
+    "system_id": "mattermost",
+    "display_name": "Mattermost",
+    "source_name": "NVD Mattermost",
+    "bucket": "official_sources",
+    "kind": "nvd-search",
+    "retired_reason": "Mattermost official JSON feed plus OSV Mattermost replace NVD for lower-latency machine-readable collection.",
+    "replacement_sources": [
+      "Mattermost Security Updates JSON",
+      "OSV Mattermost"
+    ],
+    "url": ""
+  },
   {
     "system_id": "mediawiki",
     "display_name": "MediaWiki",
@@ -337,6 +387,19 @@
     ],
     "url": "https://www.mediawiki.org/wiki/Security"
   },
+  {
+    "system_id": "mediawiki",
+    "display_name": "MediaWiki",
+    "source_name": "NVD MediaWiki",
+    "bucket": "official_sources",
+    "kind": "nvd-search",
+    "retired_reason": "MediaWiki announce RSS plus OSV MediaWiki now replace NVD for lower-latency machine-readable collection.",
+    "replacement_sources": [
+      "MediaWiki Announce RSS",
+      "OSV MediaWiki"
+    ],
+    "url": ""
+  },
   {
     "system_id": "moodle",
     "display_name": "Moodle",
@@ -349,6 +412,18 @@
     ],
     "url": "https://moodle.org/security/"
   },
+  {
+    "system_id": "moodle",
+    "display_name": "Moodle",
+    "source_name": "NVD Moodle",
+    "bucket": "official_sources",
+    "kind": "nvd-search",
+    "retired_reason": "OSV Moodle replaces NVD for machine-readable collection while official Moodle sources remain for cross-checking.",
+    "replacement_sources": [
+      "OSV Moodle"
+    ],
+    "url": ""
+  },
   {
     "system_id": "nestjs",
     "display_name": "NestJS",
@@ -361,6 +436,18 @@
     ],
     "url": ""
   },
+  {
+    "system_id": "nestjs",
+    "display_name": "NestJS",
+    "source_name": "NVD NestJS",
+    "bucket": "ecosystem_sources",
+    "kind": "nvd-search",
+    "retired_reason": "OSV NestJS replaces NVD public search for lower-latency machine-readable collection.",
+    "replacement_sources": [
+      "OSV NestJS"
+    ],
+    "url": ""
+  },
   {
     "system_id": "nextjs",
     "display_name": "Next.js",
@@ -387,6 +474,59 @@
     ],
     "url": ""
   },
+  {
+    "system_id": "opencart",
+    "display_name": "OpenCart",
+    "source_name": "NVD OpenCart",
+    "bucket": "official_sources",
+    "kind": "nvd-search",
+    "retired_reason": "OSV OpenCart replaces NVD for machine-readable collection while official release source remains active.",
+    "replacement_sources": [
+      "OpenCart Releases",
+      "OSV OpenCart"
+    ],
+    "url": ""
+  },
+  {
+    "system_id": "openmage",
+    "display_name": "OpenMage / Mage-OS",
+    "source_name": "NVD OpenMage",
+    "bucket": "official_sources",
+    "kind": "nvd-search",
+    "retired_reason": "OSV OpenMage replaces NVD for machine-readable composer-aligned collection.",
+    "replacement_sources": [
+      "OpenMage GitHub Advisories",
+      "OSV OpenMage"
+    ],
+    "url": ""
+  },
+  {
+    "system_id": "phpmyadmin",
+    "display_name": "phpMyAdmin",
+    "source_name": "NVD phpMyAdmin",
+    "bucket": "official_sources",
+    "kind": "nvd-search",
+    "retired_reason": "OSV phpMyAdmin replaces NVD for machine-readable collection while the official security page remains active.",
+    "replacement_sources": [
+      "phpMyAdmin Security Page",
+      "OSV phpMyAdmin"
+    ],
+    "url": ""
+  },
+  {
+    "system_id": "prestashop",
+    "display_name": "PrestaShop",
+    "source_name": "NVD PrestaShop",
+    "bucket": "official_sources",
+    "kind": "nvd-search",
+    "retired_reason": "OSV PrestaShop replaces NVD for machine-readable collection while official and ecosystem advisories remain active.",
+    "replacement_sources": [
+      "PrestaShop Security Page",
+      "GitHub PrestaShop Advisories",
+      "OSV PrestaShop"
+    ],
+    "url": ""
+  },
   {
     "system_id": "rails",
     "display_name": "Ruby on Rails",
@@ -399,6 +539,18 @@
     ],
     "url": ""
   },
+  {
+    "system_id": "rails",
+    "display_name": "Ruby on Rails",
+    "source_name": "NVD Ruby on Rails",
+    "bucket": "ecosystem_sources",
+    "kind": "nvd-search",
+    "retired_reason": "OSV Rails replaces NVD public search for lower-latency machine-readable collection.",
+    "replacement_sources": [
+      "OSV Rails"
+    ],
+    "url": ""
+  },
   {
     "system_id": "react",
     "display_name": "React",
@@ -412,6 +564,44 @@
     ],
     "url": ""
   },
+  {
+    "system_id": "redmine",
+    "display_name": "Redmine",
+    "source_name": "NVD Redmine",
+    "bucket": "official_sources",
+    "kind": "nvd-search",
+    "retired_reason": "Official Redmine advisories page remains active and NVD public search is retired to reduce cold-start latency.",
+    "replacement_sources": [
+      "Redmine Security Advisories"
+    ],
+    "url": ""
+  },
+  {
+    "system_id": "saleor",
+    "display_name": "Saleor",
+    "source_name": "NVD Saleor",
+    "bucket": "official_sources",
+    "kind": "nvd-search",
+    "retired_reason": "OSV Saleor replaces NVD for machine-readable collection and aligns with the published PyPI package.",
+    "replacement_sources": [
+      "GitHub Saleor Advisories",
+      "OSV Saleor"
+    ],
+    "url": ""
+  },
+  {
+    "system_id": "shopware",
+    "display_name": "Shopware",
+    "source_name": "NVD Shopware",
+    "bucket": "official_sources",
+    "kind": "nvd-search",
+    "retired_reason": "OSV Shopware replaces NVD for machine-readable collection with lower cold-start overhead.",
+    "replacement_sources": [
+      "Shopware Security Advisories",
+      "OSV Shopware"
+    ],
+    "url": ""
+  },
   {
     "system_id": "spring-boot",
     "display_name": "Spring Boot",
@@ -487,6 +677,18 @@
     ],
     "url": ""
   },
+  {
+    "system_id": "undici",
+    "display_name": "Undici",
+    "source_name": "NVD Undici",
+    "bucket": "ecosystem_sources",
+    "kind": "nvd-search",
+    "retired_reason": "OSV Undici replaces NVD public search for lower-latency machine-readable collection.",
+    "replacement_sources": [
+      "OSV Undici"
+    ],
+    "url": ""
+  },
   {
     "system_id": "vite",
     "display_name": "Vite",
@@ -525,6 +727,18 @@
     ],
     "url": ""
   },
+  {
+    "system_id": "webpack",
+    "display_name": "webpack",
+    "source_name": "NVD webpack",
+    "bucket": "ecosystem_sources",
+    "kind": "nvd-search",
+    "retired_reason": "OSV webpack replaces NVD public search for lower-latency machine-readable collection.",
+    "replacement_sources": [
+      "OSV webpack"
+    ],
+    "url": ""
+  },
   {
     "system_id": "werkzeug",
     "display_name": "Werkzeug",
@@ -536,6 +750,34 @@
       "OSV Werkzeug"
     ],
     "url": ""
+  },
+  {
+    "system_id": "woocommerce",
+    "display_name": "WooCommerce",
+    "source_name": "NVD WooCommerce",
+    "bucket": "official_sources",
+    "kind": "nvd-search",
+    "retired_reason": "OSV WooCommerce replaces NVD for machine-readable collection while official and ecosystem advisory pages remain active.",
+    "replacement_sources": [
+      "Woo Developer Advisories",
+      "GitHub WooCommerce Advisories",
+      "OSV WooCommerce"
+    ],
+    "url": ""
+  },
+  {
+    "system_id": "wordpress",
+    "display_name": "WordPress",
+    "source_name": "NVD WordPress",
+    "bucket": "official_sources",
+    "kind": "nvd-search",
+    "retired_reason": "WordPress official RSS plus ecosystem plugin intelligence cover active collection with lower cold-start latency and lower public-search dependence than NVD.",
+    "replacement_sources": [
+      "WordPress Security News RSS",
+      "Wordfence Vulnerability Database",
+      "WPScan Vulnerability Database"
+    ],
+    "url": ""
   }
 ]</pre>
     </div>