hao/websafe-kb
1
0
派生 0
代码 工单 合并请求 1 工作流 软件包 项目 发布 百科 活动

Retire remaining active NVD sources

浏览代码
这个提交包含在:
hao
2026-03-18 20:38:36 -07:00
父节点 eb0e5d587a
当前提交 b0398f30b5
修改 83 个文件,包含 5344 行新增693 行删除
下载 Patch 文件 下载 Diff 文件 展开所有文件 折叠所有文件

28
08-threat-intel/generated/dashboard/architecture.json
查看文件

@@ -1,5 +1,5 @@
{
"generated_at": "2026-03-19T02:54:09+00:00",
"generated_at": "2026-03-19T03:38:08+00:00",
"title": "\u5f53\u524d\u67b6\u6784\u5e93",
"summary": "\u5de5\u4f5c\u53f0\u3001\u63a7\u5236\u9762\u3001\u6570\u636e\u5c42\u3001\u6388\u6743\u8fb9\u754c\u4e0e\u7cfb\u7edf\u8986\u76d6\u7684\u5f53\u524d\u771f\u503c\u89c6\u56fe\u3002",
"sections": [
@@ -49,7 +49,7 @@
},
{
"label": "\u751f\u6210\u65f6\u95f4",
"value": "2026-03-19T02:54:09+00:00"
"value": "2026-03-19T03:38:08+00:00"
}
],
"links": [
@@ -1215,7 +1215,7 @@
"open": false,
"badges": [
"\u8fd1\u4e24\u5e74\u5168\u91cf",
"\u5b98\u65b9\u6e90 1",
"\u5b98\u65b9\u6e90 2",
"\u751f\u6001\u6e90 0",
"\u7814\u7a76\u6e90 0"
],
@@ -1249,7 +1249,7 @@
"fields": [
{
"label": "\u5b98\u65b9\u6765\u6e90",
"value": "NVD ASP.NET Core"
"value": "OSV ASP.NET Core\nNVD ASP.NET Core"
},
{
"label": "\u751f\u6001\u6765\u6e90",
@@ -3701,7 +3701,7 @@
"open": false,
"badges": [
"\u8fd1\u4e24\u5e74\u5168\u91cf",
"\u5b98\u65b9\u6e90 1",
"\u5b98\u65b9\u6e90 2",
"\u751f\u6001\u6e90 0",
"\u7814\u7a76\u6e90 0"
],
@@ -3735,7 +3735,7 @@
"fields": [
{
"label": "\u5b98\u65b9\u6765\u6e90",
"value": "NVD Adminer"
"value": "OSV Adminer\nNVD Adminer"
},
{
"label": "\u751f\u6001\u6765\u6e90",
@@ -3786,7 +3786,7 @@
"open": false,
"badges": [
"\u8fd1\u4e24\u5e74\u5168\u91cf",
"\u5b98\u65b9\u6e90 2",
"\u5b98\u65b9\u6e90 3",
"\u751f\u6001\u6e90 1",
"\u7814\u7a76\u6e90 0"
],
@@ -3820,7 +3820,7 @@
"fields": [
{
"label": "\u5b98\u65b9\u6765\u6e90",
"value": "GitLab Security Releases\nNVD GitLab"
"value": "GitLab Security Releases\nGitLab Security Releases Atom\nNVD GitLab"
},
{
"label": "\u751f\u6001\u6765\u6e90",
@@ -4041,7 +4041,7 @@
"open": false,
"badges": [
"\u8fd1\u4e24\u5e74\u5168\u91cf",
"\u5b98\u65b9\u6e90 2",
"\u5b98\u65b9\u6e90 3",
"\u751f\u6001\u6e90 0",
"\u7814\u7a76\u6e90 0"
],
@@ -4075,7 +4075,7 @@
"fields": [
{
"label": "\u5b98\u65b9\u6765\u6e90",
"value": "Jenkins Security Advisories\nNVD Jenkins"
"value": "Jenkins Security Advisories\nJenkins Security Advisories RSS\nNVD Jenkins"
},
{
"label": "\u751f\u6001\u6765\u6e90",
@@ -4126,7 +4126,7 @@
"open": false,
"badges": [
"\u8fd1\u4e24\u5e74\u5168\u91cf",
"\u5b98\u65b9\u6e90 2",
"\u5b98\u65b9\u6e90 3",
"\u751f\u6001\u6e90 0",
"\u7814\u7a76\u6e90 0"
],
@@ -4160,7 +4160,7 @@
"fields": [
{
"label": "\u5b98\u65b9\u6765\u6e90",
"value": "Elastic Security Announcements\nNVD Kibana"
"value": "Elastic Security Announcements\nElastic Security Announcements RSS\nNVD Kibana"
},
{
"label": "\u751f\u6001\u6765\u6e90",
@@ -5103,7 +5103,7 @@
"open": false,
"badges": [
"\u5386\u53f2\u5168\u91cf",
"\u5b98\u65b9\u6e90 2",
"\u5b98\u65b9\u6e90 3",
"\u751f\u6001\u6e90 1",
"\u7814\u7a76\u6e90 0"
],
@@ -5137,7 +5137,7 @@
"fields": [
{
"label": "\u5b98\u65b9\u6765\u6e90",
"value": "Magento GitHub Advisories\nNVD Magento"
"value": "Magento GitHub Advisories\nOSV Magento Open Source\nNVD Magento"
},
{
"label": "\u751f\u6001\u6765\u6e90",

20
08-threat-intel/generated/dashboard/data/completeness.json
查看文件

@@ -1,5 +1,5 @@
{
"generated_at": "2026-03-19T02:54:09+00:00",
"generated_at": "2026-03-19T03:38:08+00:00",
"advisory_total": 89,
"registry_advisory_total": 2392,
"scope": "latest-run-backed-advisories",
@@ -172,25 +172,25 @@
"failures": []
},
"source_health": {
"active_source_count": 118,
"green_source_count": 118,
"active_source_count": 113,
"green_source_count": 113,
"failure_count": 0,
"last_fully_green_run": "2026-03-19T02:53:57+00:00",
"last_fully_green_run": "2026-03-19T03:38:01+00:00",
"open_alert_count": 0,
"resolved_alert_count": 4
},
"monitor_summary": {
"generated_at": "2026-03-19T02:53:57+00:00",
"active_source_count": 118,
"green_source_count": 118,
"generated_at": "2026-03-19T03:38:01+00:00",
"active_source_count": 113,
"green_source_count": 113,
"source_failure_count": 0,
"open_alert_count": 0,
"resolved_alert_count": 4,
"last_fully_green_run": "2026-03-19T02:53:57+00:00",
"last_fully_green_run": "2026-03-19T03:38:01+00:00",
"source_catalog": {
"system_count": 62,
"source_count": 173,
"retired_source_count": 55
"source_count": 179,
"retired_source_count": 66
},
"ingest": {
"new_count": 0,

12
08-threat-intel/generated/dashboard/data/monitor-summary.json
查看文件

@@ -1,15 +1,15 @@
{
"generated_at": "2026-03-19T02:53:57+00:00",
"active_source_count": 118,
"green_source_count": 118,
"generated_at": "2026-03-19T03:38:01+00:00",
"active_source_count": 113,
"green_source_count": 113,
"source_failure_count": 0,
"open_alert_count": 0,
"resolved_alert_count": 4,
"last_fully_green_run": "2026-03-19T02:53:57+00:00",
"last_fully_green_run": "2026-03-19T03:38:01+00:00",
"source_catalog": {
"system_count": 62,
"source_count": 173,
"retired_source_count": 55
"source_count": 179,
"retired_source_count": 66
},
"ingest": {
"new_count": 0,

299
08-threat-intel/generated/dashboard/data/source-catalog-audit.json
查看文件

@@ -1,20 +1,20 @@
{
"generated_at": "2026-03-19T02:53:49+00:00",
"generated_at": "2026-03-19T03:37:56+00:00",
"system_count": 62,
"source_count": 173,
"active_source_count": 118,
"retired_source_count": 55,
"source_count": 179,
"active_source_count": 113,
"retired_source_count": 66,
"systems_with_active_official": 61,
"systems_with_machine_readable_source": 62,
"systems_with_machine_readable_source": 61,
"systems": [
{
"system_id": "adminer",
"display_name": "Adminer",
"category": "platforms",
"tier": "rolling-24m",
"source_total": 1,
"source_total": 2,
"active_source_total": 1,
"retired_source_total": 0,
"retired_source_total": 1,
"official_active": 1,
"ecosystem_active": 0,
"research_active": 0,
@@ -28,14 +28,14 @@
"category": "ecommerce",
"tier": "history-full",
"source_total": 5,
"active_source_total": 2,
"retired_source_total": 3,
"official_active": 2,
"active_source_total": 1,
"retired_source_total": 4,
"official_active": 1,
"ecosystem_active": 0,
"research_active": 0,
"machine_readable_active": 1,
"machine_readable_active": 0,
"has_active_official": true,
"has_machine_readable_source": true
"has_machine_readable_source": false
},
{
"system_id": "angular",
@@ -58,12 +58,12 @@
"category": "servers",
"tier": "history-full",
"source_total": 3,
"active_source_total": 3,
"retired_source_total": 0,
"official_active": 3,
"active_source_total": 2,
"retired_source_total": 1,
"official_active": 2,
"ecosystem_active": 0,
"research_active": 0,
"machine_readable_active": 2,
"machine_readable_active": 1,
"has_active_official": true,
"has_machine_readable_source": true
},
@@ -73,12 +73,12 @@
"category": "servers",
"tier": "history-full",
"source_total": 3,
"active_source_total": 3,
"retired_source_total": 0,
"official_active": 3,
"active_source_total": 2,
"retired_source_total": 1,
"official_active": 2,
"ecosystem_active": 0,
"research_active": 0,
"machine_readable_active": 2,
"machine_readable_active": 1,
"has_active_official": true,
"has_machine_readable_source": true
},
@@ -87,9 +87,9 @@
"display_name": "ASP.NET Core",
"category": "frameworks",
"tier": "rolling-24m",
"source_total": 1,
"source_total": 2,
"active_source_total": 1,
"retired_source_total": 0,
"retired_source_total": 1,
"official_active": 1,
"ecosystem_active": 0,
"research_active": 0,
@@ -312,9 +312,9 @@
"display_name": "GitLab CE",
"category": "platforms",
"tier": "rolling-24m",
"source_total": 3,
"source_total": 4,
"active_source_total": 3,
"retired_source_total": 0,
"retired_source_total": 1,
"official_active": 2,
"ecosystem_active": 1,
"research_active": 0,
@@ -358,12 +358,12 @@
"category": "servers",
"tier": "rolling-24m",
"source_total": 3,
"active_source_total": 2,
"retired_source_total": 1,
"official_active": 2,
"active_source_total": 1,
"retired_source_total": 2,
"official_active": 1,
"ecosystem_active": 0,
"research_active": 0,
"machine_readable_active": 2,
"machine_readable_active": 1,
"has_active_official": true,
"has_machine_readable_source": true
},
@@ -372,9 +372,9 @@
"display_name": "Jenkins",
"category": "platforms",
"tier": "rolling-24m",
"source_total": 2,
"source_total": 3,
"active_source_total": 2,
"retired_source_total": 0,
"retired_source_total": 1,
"official_active": 2,
"ecosystem_active": 0,
"research_active": 0,
@@ -402,9 +402,9 @@
"display_name": "Kibana",
"category": "platforms",
"tier": "rolling-24m",
"source_total": 2,
"source_total": 3,
"active_source_total": 2,
"retired_source_total": 0,
"retired_source_total": 1,
"official_active": 2,
"ecosystem_active": 0,
"research_active": 0,
@@ -447,9 +447,9 @@
"display_name": "Magento Open Source",
"category": "ecommerce",
"tier": "history-full",
"source_total": 3,
"source_total": 4,
"active_source_total": 3,
"retired_source_total": 0,
"retired_source_total": 1,
"official_active": 2,
"ecosystem_active": 1,
"research_active": 0,
@@ -553,12 +553,12 @@
"category": "servers",
"tier": "history-full",
"source_total": 3,
"active_source_total": 3,
"retired_source_total": 0,
"official_active": 3,
"active_source_total": 2,
"retired_source_total": 1,
"official_active": 2,
"ecosystem_active": 0,
"research_active": 0,
"machine_readable_active": 2,
"machine_readable_active": 1,
"has_active_official": true,
"has_machine_readable_source": true
},
@@ -939,6 +939,18 @@
}
],
"retired_sources": [
{
"system_id": "adminer",
"display_name": "Adminer",
"source_name": "NVD Adminer",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "OSV Adminer provides a machine-readable Packagist-aligned source, removing the need for NVD public search.",
"replacement_sources": [
"OSV Adminer"
],
"url": ""
},
{
"system_id": "adobe-commerce",
"display_name": "Adobe Commerce",
@@ -966,6 +978,18 @@
],
"url": ""
},
{
"system_id": "adobe-commerce",
"display_name": "Adobe Commerce",
"source_name": "NVD Adobe Commerce",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "Adobe Magento Security Index is now the active official machine-readable source, so NVD public search is no longer needed for daily collection.",
"replacement_sources": [
"Adobe Magento Security Index"
],
"url": ""
},
{
"system_id": "adobe-commerce",
"display_name": "Adobe Commerce",
@@ -991,6 +1015,44 @@
],
"url": ""
},
{
"system_id": "apache-httpd",
"display_name": "Apache HTTP Server",
"source_name": "NVD Apache HTTP Server",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "Official Apache HTTPD advisories page plus CISA KEV are sufficient active sources for daily monitoring.",
"replacement_sources": [
"Apache HTTPD Security",
"CISA KEV Apache HTTPD"
],
"url": ""
},
{
"system_id": "apache-tomcat",
"display_name": "Apache Tomcat",
"source_name": "NVD Tomcat",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "Official Tomcat advisories page plus CISA KEV are sufficient active sources for daily monitoring.",
"replacement_sources": [
"Apache Tomcat Security",
"CISA KEV Tomcat"
],
"url": ""
},
{
"system_id": "aspnet-core",
"display_name": "ASP.NET Core",
"source_name": "NVD ASP.NET Core",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "OSV ASP.NET Core provides machine-readable NuGet-aligned coverage with lower latency than NVD public search.",
"replacement_sources": [
"OSV ASP.NET Core"
],
"url": ""
},
{
"system_id": "astro",
"display_name": "Astro",
@@ -1140,6 +1202,19 @@
],
"url": ""
},
{
"system_id": "gitlab-ce",
"display_name": "GitLab CE",
"source_name": "NVD GitLab",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "GitLab Security Releases Atom provides an official machine-readable feed, so NVD public search is no longer required.",
"replacement_sources": [
"GitLab Security Releases",
"GitLab Security Releases Atom"
],
"url": ""
},
{
"system_id": "hapi",
"display_name": "Hapi",
@@ -1164,6 +1239,31 @@
],
"url": "https://www.haproxy.org/security/"
},
{
"system_id": "haproxy",
"display_name": "HAProxy",
"source_name": "NVD HAProxy",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "HAProxy Blog Feed is an active official RSS source, so NVD public search is no longer required.",
"replacement_sources": [
"HAProxy Blog Feed"
],
"url": ""
},
{
"system_id": "jenkins",
"display_name": "Jenkins",
"source_name": "NVD Jenkins",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "Jenkins Security Advisories RSS provides an official machine-readable feed, replacing NVD public search.",
"replacement_sources": [
"Jenkins Security Advisories",
"Jenkins Security Advisories RSS"
],
"url": ""
},
{
"system_id": "joomla",
"display_name": "Joomla",
@@ -1177,6 +1277,19 @@
],
"url": ""
},
{
"system_id": "kibana",
"display_name": "Kibana",
"source_name": "NVD Kibana",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "Elastic Security Announcements RSS provides an official machine-readable feed, replacing NVD public search.",
"replacement_sources": [
"Elastic Security Announcements",
"Elastic Security Announcements RSS"
],
"url": ""
},
{
"system_id": "koa",
"display_name": "Koa",
@@ -1201,6 +1314,19 @@
],
"url": ""
},
{
"system_id": "magento-open-source",
"display_name": "Magento Open Source",
"source_name": "NVD Magento",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "OSV Magento Open Source plus Magento GitHub advisories replace NVD public search for machine-readable collection.",
"replacement_sources": [
"Magento GitHub Advisories",
"OSV Magento Open Source"
],
"url": ""
},
{
"system_id": "mattermost",
"display_name": "Mattermost",
@@ -1313,6 +1439,19 @@
],
"url": ""
},
{
"system_id": "nginx",
"display_name": "Nginx",
"source_name": "NVD NGINX",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "Official NGINX advisories page and CISA KEV together provide the needed daily signal without NVD public-search latency.",
"replacement_sources": [
"NGINX Security Advisories",
"CISA KEV NGINX"
],
"url": ""
},
{
"system_id": "nuxt",
"display_name": "Nuxt",
@@ -1633,6 +1772,13 @@
}
],
"replacement_map": [
{
"system_id": "adminer",
"retired_source": "NVD Adminer",
"replacement_sources": [
"OSV Adminer"
]
},
{
"system_id": "adobe-commerce",
"retired_source": "Adobe Security Bulletins",
@@ -1650,6 +1796,13 @@
"NVD Adobe Commerce"
]
},
{
"system_id": "adobe-commerce",
"retired_source": "NVD Adobe Commerce",
"replacement_sources": [
"Adobe Magento Security Index"
]
},
{
"system_id": "adobe-commerce",
"retired_source": "Sansec Research",
@@ -1665,6 +1818,29 @@
"OSV Angular"
]
},
{
"system_id": "apache-httpd",
"retired_source": "NVD Apache HTTP Server",
"replacement_sources": [
"Apache HTTPD Security",
"CISA KEV Apache HTTPD"
]
},
{
"system_id": "apache-tomcat",
"retired_source": "NVD Tomcat",
"replacement_sources": [
"Apache Tomcat Security",
"CISA KEV Tomcat"
]
},
{
"system_id": "aspnet-core",
"retired_source": "NVD ASP.NET Core",
"replacement_sources": [
"OSV ASP.NET Core"
]
},
{
"system_id": "astro",
"retired_source": "GitHub Global Advisories",
@@ -1754,6 +1930,14 @@
"OSV Ghost"
]
},
{
"system_id": "gitlab-ce",
"retired_source": "NVD GitLab",
"replacement_sources": [
"GitLab Security Releases",
"GitLab Security Releases Atom"
]
},
{
"system_id": "hapi",
"retired_source": "GitHub Global Advisories",
@@ -1768,6 +1952,21 @@
"HAProxy Blog Feed"
]
},
{
"system_id": "haproxy",
"retired_source": "NVD HAProxy",
"replacement_sources": [
"HAProxy Blog Feed"
]
},
{
"system_id": "jenkins",
"retired_source": "NVD Jenkins",
"replacement_sources": [
"Jenkins Security Advisories",
"Jenkins Security Advisories RSS"
]
},
{
"system_id": "joomla",
"retired_source": "NVD Joomla",
@@ -1776,6 +1975,14 @@
"OSV Joomla"
]
},
{
"system_id": "kibana",
"retired_source": "NVD Kibana",
"replacement_sources": [
"Elastic Security Announcements",
"Elastic Security Announcements RSS"
]
},
{
"system_id": "koa",
"retired_source": "GitHub Global Advisories",
@@ -1790,6 +1997,14 @@
"OSV Laravel"
]
},
{
"system_id": "magento-open-source",
"retired_source": "NVD Magento",
"replacement_sources": [
"Magento GitHub Advisories",
"OSV Magento Open Source"
]
},
{
"system_id": "mattermost",
"retired_source": "Mattermost Security Updates",
@@ -1857,6 +2072,14 @@
"OSV Next.js"
]
},
{
"system_id": "nginx",
"retired_source": "NVD NGINX",
"replacement_sources": [
"NGINX Security Advisories",
"CISA KEV NGINX"
]
},
{
"system_id": "nuxt",
"retired_source": "GitHub Global Advisories",

430
08-threat-intel/generated/dashboard/data/source-health.json
查看文件

文件差异内容过多而无法显示 加载差异

28
08-threat-intel/generated/dashboard/docs/architecture-library.html
查看文件

@@ -87,7 +87,7 @@
<h1>当前架构库镜像</h1>
<div class="meta">工作台内置镜像页:当前架构库结构化数据镜像。</div>
<pre>{
&quot;generated_at&quot;: &quot;2026-03-19T02:54:09+00:00&quot;,
&quot;generated_at&quot;: &quot;2026-03-19T03:38:08+00:00&quot;,
&quot;title&quot;: &quot;当前架构库&quot;,
&quot;summary&quot;: &quot;工作台、控制面、数据层、授权边界与系统覆盖的当前真值视图。&quot;,
&quot;sections&quot;: [
@@ -137,7 +137,7 @@
},
{
&quot;label&quot;: &quot;生成时间&quot;,
&quot;value&quot;: &quot;2026-03-19T02:54:09+00:00&quot;
&quot;value&quot;: &quot;2026-03-19T03:38:08+00:00&quot;
}
],
&quot;links&quot;: [
@@ -1303,7 +1303,7 @@
&quot;open&quot;: false,
&quot;badges&quot;: [
&quot;近两年全量&quot;,
&quot;官方源 1&quot;,
&quot;官方源 2&quot;,
&quot;生态源 0&quot;,
&quot;研究源 0&quot;
],
@@ -1337,7 +1337,7 @@
&quot;fields&quot;: [
{
&quot;label&quot;: &quot;官方来源&quot;,
&quot;value&quot;: &quot;NVD ASP.NET Core&quot;
&quot;value&quot;: &quot;OSV ASP.NET Core\nNVD ASP.NET Core&quot;
},
{
&quot;label&quot;: &quot;生态来源&quot;,
@@ -3789,7 +3789,7 @@
&quot;open&quot;: false,
&quot;badges&quot;: [
&quot;近两年全量&quot;,
&quot;官方源 1&quot;,
&quot;官方源 2&quot;,
&quot;生态源 0&quot;,
&quot;研究源 0&quot;
],
@@ -3823,7 +3823,7 @@
&quot;fields&quot;: [
{
&quot;label&quot;: &quot;官方来源&quot;,
&quot;value&quot;: &quot;NVD Adminer&quot;
&quot;value&quot;: &quot;OSV Adminer\nNVD Adminer&quot;
},
{
&quot;label&quot;: &quot;生态来源&quot;,
@@ -3874,7 +3874,7 @@
&quot;open&quot;: false,
&quot;badges&quot;: [
&quot;近两年全量&quot;,
&quot;官方源 2&quot;,
&quot;官方源 3&quot;,
&quot;生态源 1&quot;,
&quot;研究源 0&quot;
],
@@ -3908,7 +3908,7 @@
&quot;fields&quot;: [
{
&quot;label&quot;: &quot;官方来源&quot;,
&quot;value&quot;: &quot;GitLab Security Releases\nNVD GitLab&quot;
&quot;value&quot;: &quot;GitLab Security Releases\nGitLab Security Releases Atom\nNVD GitLab&quot;
},
{
&quot;label&quot;: &quot;生态来源&quot;,
@@ -4129,7 +4129,7 @@
&quot;open&quot;: false,
&quot;badges&quot;: [
&quot;近两年全量&quot;,
&quot;官方源 2&quot;,
&quot;官方源 3&quot;,
&quot;生态源 0&quot;,
&quot;研究源 0&quot;
],
@@ -4163,7 +4163,7 @@
&quot;fields&quot;: [
{
&quot;label&quot;: &quot;官方来源&quot;,
&quot;value&quot;: &quot;Jenkins Security Advisories\nNVD Jenkins&quot;
&quot;value&quot;: &quot;Jenkins Security Advisories\nJenkins Security Advisories RSS\nNVD Jenkins&quot;
},
{
&quot;label&quot;: &quot;生态来源&quot;,
@@ -4214,7 +4214,7 @@
&quot;open&quot;: false,
&quot;badges&quot;: [
&quot;近两年全量&quot;,
&quot;官方源 2&quot;,
&quot;官方源 3&quot;,
&quot;生态源 0&quot;,
&quot;研究源 0&quot;
],
@@ -4248,7 +4248,7 @@
&quot;fields&quot;: [
{
&quot;label&quot;: &quot;官方来源&quot;,
&quot;value&quot;: &quot;Elastic Security Announcements\nNVD Kibana&quot;
&quot;value&quot;: &quot;Elastic Security Announcements\nElastic Security Announcements RSS\nNVD Kibana&quot;
},
{
&quot;label&quot;: &quot;生态来源&quot;,
@@ -5191,7 +5191,7 @@
&quot;open&quot;: false,
&quot;badges&quot;: [
&quot;历史全量&quot;,
&quot;官方源 2&quot;,
&quot;官方源 3&quot;,
&quot;生态源 1&quot;,
&quot;研究源 0&quot;
],
@@ -5225,7 +5225,7 @@
&quot;fields&quot;: [
{
&quot;label&quot;: &quot;官方来源&quot;,
&quot;value&quot;: &quot;Magento GitHub Advisories\nNVD Magento&quot;
&quot;value&quot;: &quot;Magento GitHub Advisories\nOSV Magento Open Source\nNVD Magento&quot;
},
{
&quot;label&quot;: &quot;生态来源&quot;,

139
08-threat-intel/generated/dashboard/docs/retired-sources.html
查看文件

@@ -87,6 +87,18 @@
<h1>Retired Sources &amp; Replacement Map</h1>
<div class="meta">工作台内置镜像页:退役源、退役原因和 replacement_sources 真值。</div>
<pre>[
{
&quot;system_id&quot;: &quot;adminer&quot;,
&quot;display_name&quot;: &quot;Adminer&quot;,
&quot;source_name&quot;: &quot;NVD Adminer&quot;,
&quot;bucket&quot;: &quot;official_sources&quot;,
&quot;kind&quot;: &quot;nvd-search&quot;,
&quot;retired_reason&quot;: &quot;OSV Adminer provides a machine-readable Packagist-aligned source, removing the need for NVD public search.&quot;,
&quot;replacement_sources&quot;: [
&quot;OSV Adminer&quot;
],
&quot;url&quot;: &quot;&quot;
},
{
&quot;system_id&quot;: &quot;adobe-commerce&quot;,
&quot;display_name&quot;: &quot;Adobe Commerce&quot;,
@@ -114,6 +126,18 @@
],
&quot;url&quot;: &quot;&quot;
},
{
&quot;system_id&quot;: &quot;adobe-commerce&quot;,
&quot;display_name&quot;: &quot;Adobe Commerce&quot;,
&quot;source_name&quot;: &quot;NVD Adobe Commerce&quot;,
&quot;bucket&quot;: &quot;official_sources&quot;,
&quot;kind&quot;: &quot;nvd-search&quot;,
&quot;retired_reason&quot;: &quot;Adobe Magento Security Index is now the active official machine-readable source, so NVD public search is no longer needed for daily collection.&quot;,
&quot;replacement_sources&quot;: [
&quot;Adobe Magento Security Index&quot;
],
&quot;url&quot;: &quot;&quot;
},
{
&quot;system_id&quot;: &quot;adobe-commerce&quot;,
&quot;display_name&quot;: &quot;Adobe Commerce&quot;,
@@ -139,6 +163,44 @@
],
&quot;url&quot;: &quot;&quot;
},
{
&quot;system_id&quot;: &quot;apache-httpd&quot;,
&quot;display_name&quot;: &quot;Apache HTTP Server&quot;,
&quot;source_name&quot;: &quot;NVD Apache HTTP Server&quot;,
&quot;bucket&quot;: &quot;official_sources&quot;,
&quot;kind&quot;: &quot;nvd-search&quot;,
&quot;retired_reason&quot;: &quot;Official Apache HTTPD advisories page plus CISA KEV are sufficient active sources for daily monitoring.&quot;,
&quot;replacement_sources&quot;: [
&quot;Apache HTTPD Security&quot;,
&quot;CISA KEV Apache HTTPD&quot;
],
&quot;url&quot;: &quot;&quot;
},
{
&quot;system_id&quot;: &quot;apache-tomcat&quot;,
&quot;display_name&quot;: &quot;Apache Tomcat&quot;,
&quot;source_name&quot;: &quot;NVD Tomcat&quot;,
&quot;bucket&quot;: &quot;official_sources&quot;,
&quot;kind&quot;: &quot;nvd-search&quot;,
&quot;retired_reason&quot;: &quot;Official Tomcat advisories page plus CISA KEV are sufficient active sources for daily monitoring.&quot;,
&quot;replacement_sources&quot;: [
&quot;Apache Tomcat Security&quot;,
&quot;CISA KEV Tomcat&quot;
],
&quot;url&quot;: &quot;&quot;
},
{
&quot;system_id&quot;: &quot;aspnet-core&quot;,
&quot;display_name&quot;: &quot;ASP.NET Core&quot;,
&quot;source_name&quot;: &quot;NVD ASP.NET Core&quot;,
&quot;bucket&quot;: &quot;official_sources&quot;,
&quot;kind&quot;: &quot;nvd-search&quot;,
&quot;retired_reason&quot;: &quot;OSV ASP.NET Core provides machine-readable NuGet-aligned coverage with lower latency than NVD public search.&quot;,
&quot;replacement_sources&quot;: [
&quot;OSV ASP.NET Core&quot;
],
&quot;url&quot;: &quot;&quot;
},
{
&quot;system_id&quot;: &quot;astro&quot;,
&quot;display_name&quot;: &quot;Astro&quot;,
@@ -288,6 +350,19 @@
],
&quot;url&quot;: &quot;&quot;
},
{
&quot;system_id&quot;: &quot;gitlab-ce&quot;,
&quot;display_name&quot;: &quot;GitLab CE&quot;,
&quot;source_name&quot;: &quot;NVD GitLab&quot;,
&quot;bucket&quot;: &quot;official_sources&quot;,
&quot;kind&quot;: &quot;nvd-search&quot;,
&quot;retired_reason&quot;: &quot;GitLab Security Releases Atom provides an official machine-readable feed, so NVD public search is no longer required.&quot;,
&quot;replacement_sources&quot;: [
&quot;GitLab Security Releases&quot;,
&quot;GitLab Security Releases Atom&quot;
],
&quot;url&quot;: &quot;&quot;
},
{
&quot;system_id&quot;: &quot;hapi&quot;,
&quot;display_name&quot;: &quot;Hapi&quot;,
@@ -312,6 +387,31 @@
],
&quot;url&quot;: &quot;https://www.haproxy.org/security/&quot;
},
{
&quot;system_id&quot;: &quot;haproxy&quot;,
&quot;display_name&quot;: &quot;HAProxy&quot;,
&quot;source_name&quot;: &quot;NVD HAProxy&quot;,
&quot;bucket&quot;: &quot;official_sources&quot;,
&quot;kind&quot;: &quot;nvd-search&quot;,
&quot;retired_reason&quot;: &quot;HAProxy Blog Feed is an active official RSS source, so NVD public search is no longer required.&quot;,
&quot;replacement_sources&quot;: [
&quot;HAProxy Blog Feed&quot;
],
&quot;url&quot;: &quot;&quot;
},
{
&quot;system_id&quot;: &quot;jenkins&quot;,
&quot;display_name&quot;: &quot;Jenkins&quot;,
&quot;source_name&quot;: &quot;NVD Jenkins&quot;,
&quot;bucket&quot;: &quot;official_sources&quot;,
&quot;kind&quot;: &quot;nvd-search&quot;,
&quot;retired_reason&quot;: &quot;Jenkins Security Advisories RSS provides an official machine-readable feed, replacing NVD public search.&quot;,
&quot;replacement_sources&quot;: [
&quot;Jenkins Security Advisories&quot;,
&quot;Jenkins Security Advisories RSS&quot;
],
&quot;url&quot;: &quot;&quot;
},
{
&quot;system_id&quot;: &quot;joomla&quot;,
&quot;display_name&quot;: &quot;Joomla&quot;,
@@ -325,6 +425,19 @@
],
&quot;url&quot;: &quot;&quot;
},
{
&quot;system_id&quot;: &quot;kibana&quot;,
&quot;display_name&quot;: &quot;Kibana&quot;,
&quot;source_name&quot;: &quot;NVD Kibana&quot;,
&quot;bucket&quot;: &quot;official_sources&quot;,
&quot;kind&quot;: &quot;nvd-search&quot;,
&quot;retired_reason&quot;: &quot;Elastic Security Announcements RSS provides an official machine-readable feed, replacing NVD public search.&quot;,
&quot;replacement_sources&quot;: [
&quot;Elastic Security Announcements&quot;,
&quot;Elastic Security Announcements RSS&quot;
],
&quot;url&quot;: &quot;&quot;
},
{
&quot;system_id&quot;: &quot;koa&quot;,
&quot;display_name&quot;: &quot;Koa&quot;,
@@ -349,6 +462,19 @@
],
&quot;url&quot;: &quot;&quot;
},
{
&quot;system_id&quot;: &quot;magento-open-source&quot;,
&quot;display_name&quot;: &quot;Magento Open Source&quot;,
&quot;source_name&quot;: &quot;NVD Magento&quot;,
&quot;bucket&quot;: &quot;official_sources&quot;,
&quot;kind&quot;: &quot;nvd-search&quot;,
&quot;retired_reason&quot;: &quot;OSV Magento Open Source plus Magento GitHub advisories replace NVD public search for machine-readable collection.&quot;,
&quot;replacement_sources&quot;: [
&quot;Magento GitHub Advisories&quot;,
&quot;OSV Magento Open Source&quot;
],
&quot;url&quot;: &quot;&quot;
},
{
&quot;system_id&quot;: &quot;mattermost&quot;,
&quot;display_name&quot;: &quot;Mattermost&quot;,
@@ -461,6 +587,19 @@
],
&quot;url&quot;: &quot;&quot;
},
{
&quot;system_id&quot;: &quot;nginx&quot;,
&quot;display_name&quot;: &quot;Nginx&quot;,
&quot;source_name&quot;: &quot;NVD NGINX&quot;,
&quot;bucket&quot;: &quot;official_sources&quot;,
&quot;kind&quot;: &quot;nvd-search&quot;,
&quot;retired_reason&quot;: &quot;Official NGINX advisories page and CISA KEV together provide the needed daily signal without NVD public-search latency.&quot;,
&quot;replacement_sources&quot;: [
&quot;NGINX Security Advisories&quot;,
&quot;CISA KEV NGINX&quot;
],
&quot;url&quot;: &quot;&quot;
},
{
&quot;system_id&quot;: &quot;nuxt&quot;,
&quot;display_name&quot;: &quot;Nuxt&quot;,

21
08-threat-intel/generated/dashboard/docs/source-catalog-audit.html
查看文件

@@ -88,20 +88,25 @@
<div class="meta">工作台内置镜像页active/retired source、replacement map 与覆盖摘要。</div>
<pre># Source Catalog Audit
- generated_at: `2026-03-19T02:53:49+00:00`
- generated_at: `2026-03-19T03:37:56+00:00`
- systems: `62`
- sources: `173`
- active_sources: `118`
- retired_sources: `55`
- sources: `179`
- active_sources: `113`
- retired_sources: `66`
- systems_with_active_official: `61/62`
- systems_with_machine_readable_source: `62/62`
- systems_with_machine_readable_source: `61/62`
## Retired Sources
- `adminer` `NVD Adminer` -&gt; replacements: `OSV Adminer` | reason: OSV Adminer provides a machine-readable Packagist-aligned source, removing the need for NVD public search.
- `adobe-commerce` `Adobe Security Bulletins` -&gt; replacements: `Adobe Magento Security Index, NVD Adobe Commerce, GHSA Adobe Commerce` | reason: Original bulletin index probe was unstable under the old transport path; vendor index replacement uses explicit request policy and parser hints.
- `adobe-commerce` `GHSA Adobe Commerce` -&gt; replacements: `Adobe Magento Security Index, NVD Adobe Commerce` | reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; Adobe index and NVD remain active replacements.
- `adobe-commerce` `NVD Adobe Commerce` -&gt; replacements: `Adobe Magento Security Index` | reason: Adobe Magento Security Index is now the active official machine-readable source, so NVD public search is no longer needed for daily collection.
- `adobe-commerce` `Sansec Research` -&gt; replacements: `GHSA Adobe Commerce, Adobe Magento Security Index` | reason: Research index is too slow for daily active monitoring; GHSA Adobe Commerce provides a stable machine-readable replacement.
- `angular` `GitHub Global Advisories` -&gt; replacements: `OSV Angular` | reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; OSV Angular remains the active replacement source.
- `apache-httpd` `NVD Apache HTTP Server` -&gt; replacements: `Apache HTTPD Security, CISA KEV Apache HTTPD` | reason: Official Apache HTTPD advisories page plus CISA KEV are sufficient active sources for daily monitoring.
- `apache-tomcat` `NVD Tomcat` -&gt; replacements: `Apache Tomcat Security, CISA KEV Tomcat` | reason: Official Tomcat advisories page plus CISA KEV are sufficient active sources for daily monitoring.
- `aspnet-core` `NVD ASP.NET Core` -&gt; replacements: `OSV ASP.NET Core` | reason: OSV ASP.NET Core provides machine-readable NuGet-aligned coverage with lower latency than NVD public search.
- `astro` `GitHub Global Advisories` -&gt; replacements: `OSV Astro` | reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; OSV Astro remains the active replacement source.
- `discourse` `Discourse Meta Security` -&gt; replacements: `Discourse Release Notes RSS, GitHub Discourse Advisories` | reason: Meta security category HTML changed and no longer provides stable scrape semantics for health checks.
- `discourse` `GitHub Discourse Advisories` -&gt; replacements: `Discourse Release Notes RSS, Discourse Security RSS` | reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; Discourse release feed remains the active official source.
@@ -114,11 +119,16 @@
- `fastify` `GitHub Global Advisories` -&gt; replacements: `OSV Fastify` | reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; OSV Fastify remains the active replacement source.
- `flask` `GitHub Global Advisories` -&gt; replacements: `OSV Flask` | reason: Unauthenticated GitHub advisory API is quota-limited; OSV Flask remains the active machine-readable source.
- `ghost` `NVD Ghost` -&gt; replacements: `Ghost GitHub Advisories, OSV Ghost` | reason: OSV Ghost replaces NVD for machine-readable collection and keeps npm package alignment.
- `gitlab-ce` `NVD GitLab` -&gt; replacements: `GitLab Security Releases, GitLab Security Releases Atom` | reason: GitLab Security Releases Atom provides an official machine-readable feed, so NVD public search is no longer required.
- `hapi` `GitHub Global Advisories` -&gt; replacements: `OSV Hapi` | reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; OSV Hapi remains the active replacement source.
- `haproxy` `HAProxy Security Advisories` -&gt; replacements: `HAProxy Blog Feed` | reason: Legacy haproxy.org security page no longer yields stable scrape results for monitoring.
- `haproxy` `NVD HAProxy` -&gt; replacements: `HAProxy Blog Feed` | reason: HAProxy Blog Feed is an active official RSS source, so NVD public search is no longer required.
- `jenkins` `NVD Jenkins` -&gt; replacements: `Jenkins Security Advisories, Jenkins Security Advisories RSS` | reason: Jenkins Security Advisories RSS provides an official machine-readable feed, replacing NVD public search.
- `joomla` `NVD Joomla` -&gt; replacements: `Joomla Security Centre, OSV Joomla` | reason: OSV Joomla CMS replaces NVD for machine-readable collection without public NVD throttling.
- `kibana` `NVD Kibana` -&gt; replacements: `Elastic Security Announcements, Elastic Security Announcements RSS` | reason: Elastic Security Announcements RSS provides an official machine-readable feed, replacing NVD public search.
- `koa` `GitHub Global Advisories` -&gt; replacements: `OSV Koa` | reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; OSV Koa remains the active replacement source.
- `laravel` `GitHub Global Advisories` -&gt; replacements: `OSV Laravel` | reason: Unauthenticated GitHub advisory API is quota-limited; OSV Laravel remains the active machine-readable source.
- `magento-open-source` `NVD Magento` -&gt; replacements: `Magento GitHub Advisories, OSV Magento Open Source` | reason: OSV Magento Open Source plus Magento GitHub advisories replace NVD public search for machine-readable collection.
- `mattermost` `Mattermost Security Updates` -&gt; replacements: `NVD Mattermost` | reason: Mattermost security updates page returned repeated 403 responses from the collector path; NVD replacement remains active.
- `mattermost` `NVD Mattermost` -&gt; replacements: `Mattermost Security Updates JSON, OSV Mattermost` | reason: Mattermost official JSON feed plus OSV Mattermost replace NVD for lower-latency machine-readable collection.
- `mediawiki` `MediaWiki Security Releases` -&gt; replacements: `MediaWiki Announce RSS, NVD MediaWiki` | reason: MediaWiki security page is no longer reachable reliably from the collector path; NVD replacement remains active.
@@ -128,6 +138,7 @@
- `nestjs` `GitHub Global Advisories` -&gt; replacements: `OSV NestJS` | reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; OSV NestJS remains the active replacement source.
- `nestjs` `NVD NestJS` -&gt; replacements: `OSV NestJS` | reason: OSV NestJS replaces NVD public search for lower-latency machine-readable collection.
- `nextjs` `GitHub Global Advisories` -&gt; replacements: `GitHub Next.js Advisories, OSV Next.js` | reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; GitHub Next.js Advisories and OSV Next.js remain active replacements.
- `nginx` `NVD NGINX` -&gt; replacements: `NGINX Security Advisories, CISA KEV NGINX` | reason: Official NGINX advisories page and CISA KEV together provide the needed daily signal without NVD public-search latency.
- `nuxt` `GitHub Global Advisories` -&gt; replacements: `Nuxt Security, OSV Nuxt` | reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; Nuxt Security and OSV Nuxt remain active replacements.
- `opencart` `NVD OpenCart` -&gt; replacements: `OpenCart Releases, OSV OpenCart` | reason: OSV OpenCart replaces NVD for machine-readable collection while official release source remains active.
- `openmage` `NVD OpenMage` -&gt; replacements: `OpenMage GitHub Advisories, OSV OpenMage` | reason: OSV OpenMage replaces NVD for machine-readable composer-aligned collection.

78
08-threat-intel/generated/dashboard/docs/source-map.html
查看文件

@@ -544,6 +544,9 @@ systems:
confidence: official
advisory_mode: core
results_per_page: 50
status: retired
retired_reason: Adobe Magento Security Index is now the active official machine-readable source, so NVD public search is no longer needed for daily collection.
replacement_sources: [Adobe Magento Security Index]
ecosystem_sources:
- name: GHSA Adobe Commerce
kind: ghsa-global
@@ -591,12 +594,19 @@ systems:
advisory_mode: core
keywords: [magento]
max_items: 50
- name: OSV Magento Open Source
kind: osv-batch
confidence: official
advisory_mode: core
- name: NVD Magento
kind: nvd-search
keyword: Magento
confidence: official
advisory_mode: core
results_per_page: 50
status: retired
retired_reason: OSV Magento Open Source plus Magento GitHub advisories replace NVD public search for machine-readable collection.
replacement_sources: [Magento GitHub Advisories, OSV Magento Open Source]
ecosystem_sources:
- name: Sansec Research
kind: html-links
@@ -607,9 +617,9 @@ systems:
max_items: 50
research_sources: []
package_names:
- ecosystem: composer
- ecosystem: Packagist
name: magento/product-community-edition
- ecosystem: composer
- ecosystem: Packagist
name: magento/framework
cpe_keys: [&quot;magento:magento&quot;]
ghsa_keywords: [magento]
@@ -1900,15 +1910,24 @@ systems:
tier: rolling-24m
advisory_modes: [core]
official_sources:
- name: OSV ASP.NET Core
kind: osv-batch
confidence: official
advisory_mode: core
- name: NVD ASP.NET Core
kind: nvd-search
keyword: ASP.NET Core
confidence: official
advisory_mode: core
results_per_page: 40
status: retired
retired_reason: OSV ASP.NET Core provides machine-readable NuGet-aligned coverage with lower latency than NVD public search.
replacement_sources: [OSV ASP.NET Core]
ecosystem_sources: []
research_sources: []
package_names: []
package_names:
- ecosystem: NuGet
name: Microsoft.AspNetCore.App
cpe_keys: [&quot;microsoft:asp.net_core&quot;]
ghsa_keywords: [asp.net core]
kev_keywords: [asp.net core]
@@ -1982,6 +2001,9 @@ systems:
confidence: official
advisory_mode: server
results_per_page: 50
status: retired
retired_reason: Official NGINX advisories page and CISA KEV together provide the needed daily signal without NVD public-search latency.
replacement_sources: [NGINX Security Advisories, CISA KEV NGINX]
- name: CISA KEV NGINX
kind: kev-json
url: https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities.json
@@ -2024,6 +2046,9 @@ systems:
confidence: official
advisory_mode: server
results_per_page: 50
status: retired
retired_reason: Official Apache HTTPD advisories page plus CISA KEV are sufficient active sources for daily monitoring.
replacement_sources: [Apache HTTPD Security, CISA KEV Apache HTTPD]
ecosystem_sources: []
research_sources: []
package_names: []
@@ -2060,6 +2085,9 @@ systems:
confidence: official
advisory_mode: server
results_per_page: 50
status: retired
retired_reason: Official Tomcat advisories page plus CISA KEV are sufficient active sources for daily monitoring.
replacement_sources: [Apache Tomcat Security, CISA KEV Tomcat]
ecosystem_sources: []
research_sources: []
package_names: []
@@ -2160,6 +2188,9 @@ systems:
confidence: official
advisory_mode: server
results_per_page: 40
status: retired
retired_reason: HAProxy Blog Feed is an active official RSS source, so NVD public search is no longer required.
replacement_sources: [HAProxy Blog Feed]
ecosystem_sources: []
research_sources: []
package_names: []
@@ -2216,15 +2247,24 @@ systems:
tier: rolling-24m
advisory_modes: [core]
official_sources:
- name: OSV Adminer
kind: osv-batch
confidence: official
advisory_mode: core
- name: NVD Adminer
kind: nvd-search
keyword: Adminer
confidence: official
advisory_mode: core
results_per_page: 40
status: retired
retired_reason: OSV Adminer provides a machine-readable Packagist-aligned source, removing the need for NVD public search.
replacement_sources: [OSV Adminer]
ecosystem_sources: []
research_sources: []
package_names: []
package_names:
- ecosystem: Packagist
name: vrana/adminer
cpe_keys: [&quot;adminer:adminer&quot;]
ghsa_keywords: [adminer]
kev_keywords: [adminer]
@@ -2276,12 +2316,22 @@ systems:
advisory_mode: core
keywords: [security release, gitlab]
max_items: 50
- name: GitLab Security Releases Atom
kind: atom-feed
url: https://about.gitlab.com/security-releases.xml
confidence: official
advisory_mode: core
keywords: [security release, gitlab]
max_items: 50
- name: NVD GitLab
kind: nvd-search
keyword: GitLab CE
confidence: official
advisory_mode: core
results_per_page: 40
status: retired
retired_reason: GitLab Security Releases Atom provides an official machine-readable feed, so NVD public search is no longer required.
replacement_sources: [GitLab Security Releases, GitLab Security Releases Atom]
ecosystem_sources:
- name: GitLab Advisory Database
kind: html-links
@@ -2313,12 +2363,22 @@ systems:
advisory_mode: core
keywords: [jenkins]
max_items: 60
- name: Jenkins Security Advisories RSS
kind: rss-feed
url: https://www.jenkins.io/security/advisories/rss.xml
confidence: official
advisory_mode: core
keywords: [jenkins]
max_items: 60
- name: NVD Jenkins
kind: nvd-search
keyword: Jenkins
confidence: official
advisory_mode: core
results_per_page: 40
status: retired
retired_reason: Jenkins Security Advisories RSS provides an official machine-readable feed, replacing NVD public search.
replacement_sources: [Jenkins Security Advisories, Jenkins Security Advisories RSS]
ecosystem_sources: []
research_sources: []
package_names: []
@@ -2374,12 +2434,22 @@ systems:
advisory_mode: core
keywords: [kibana, elastic, security]
max_items: 60
- name: Elastic Security Announcements RSS
kind: rss-feed
url: https://discuss.elastic.co/c/announcements/security-announcements/31.rss
confidence: official
advisory_mode: core
keywords: [kibana, elastic, security]
max_items: 60
- name: NVD Kibana
kind: nvd-search
keyword: Kibana
confidence: official
advisory_mode: core
results_per_page: 40
status: retired
retired_reason: Elastic Security Announcements RSS provides an official machine-readable feed, replacing NVD public search.
replacement_sources: [Elastic Security Announcements, Elastic Security Announcements RSS]
ecosystem_sources: []
research_sources: []
package_names: []

10
08-threat-intel/generated/dashboard/docs/testing-completeness-report.html
查看文件

@@ -88,15 +88,15 @@
<div class="meta">工作台内置镜像页89 条 advisory 最新完整度、family 矩阵与 ingest 健康度。</div>
<pre># 全库 Advisory 完整度报告
- 生成时间: `2026-03-19T02:54:09+00:00`
- 生成时间: `2026-03-19T03:38:08+00:00`
- 最新 advisory 完整度: `89/89` `verified-real`
- 合成验证数量: `0`
- 阻塞数量: `0`
- 人工/待补证据数量: `0`
- 完整度百分比: `100.0%`
- active source 全绿: `118/118`
- active source 全绿: `113/113`
- source open alerts: `0`
- 最近一次 source 全绿: `2026-03-19T02:53:57+00:00`
- 最近一次 source 全绿: `2026-03-19T03:38:01+00:00`
## 系统覆盖矩阵
@@ -118,8 +118,8 @@
## Ingest / Source 健康度
- source failures: `0`
- active sources: `118`
- green sources: `118`
- active sources: `113`
- green sources: `113`
- open alerts: `0`
## 剩余风险说明

10
08-threat-intel/generated/dashboard/summary.json
查看文件

@@ -1,5 +1,5 @@
{
"generated_at": "2026-03-19T02:54:09+00:00",
"generated_at": "2026-03-19T03:38:08+00:00",
"advisory_count": 2392,
"run_count": 140,
"statuses": {
@@ -154,11 +154,11 @@
}
],
"monitoring": {
"active_source_count": 118,
"green_source_count": 118,
"active_source_count": 113,
"green_source_count": 113,
"source_failure_count": 0,
"open_alert_count": 0,
"last_fully_green_run": "2026-03-19T02:53:57+00:00"
"last_fully_green_run": "2026-03-19T03:38:01+00:00"
},
"systems": [
{
@@ -1969,7 +1969,7 @@
"verified_ratio": 100.0,
"complete": true,
"source_failure_count": 0,
"active_source_count": 118,
"active_source_count": 113,
"open_alert_count": 0
}
}

2
08-threat-intel/generated/latest-ingest.md
查看文件

@@ -1,6 +1,6 @@
# 最新同步摘要
- 渲染时间: `2026-03-19T02:54:09+00:00`
- 渲染时间: `2026-03-19T03:38:08+00:00`
- 系统数量: `62`
- Advisory 数量: `2348`
- 重点 Markdown 数量: `156`

12
08-threat-intel/generated/monitor-summary.json
查看文件

@@ -1,15 +1,15 @@
{
"generated_at": "2026-03-19T02:53:57+00:00",
"active_source_count": 118,
"green_source_count": 118,
"generated_at": "2026-03-19T03:38:01+00:00",
"active_source_count": 113,
"green_source_count": 113,
"source_failure_count": 0,
"open_alert_count": 0,
"resolved_alert_count": 4,
"last_fully_green_run": "2026-03-19T02:53:57+00:00",
"last_fully_green_run": "2026-03-19T03:38:01+00:00",
"source_catalog": {
"system_count": 62,
"source_count": 173,
"retired_source_count": 55
"source_count": 179,
"retired_source_count": 66
},
"ingest": {
"new_count": 0,

139
08-threat-intel/generated/retired-sources.json
查看文件

@@ -1,4 +1,16 @@
[
{
"system_id": "adminer",
"display_name": "Adminer",
"source_name": "NVD Adminer",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "OSV Adminer provides a machine-readable Packagist-aligned source, removing the need for NVD public search.",
"replacement_sources": [
"OSV Adminer"
],
"url": ""
},
{
"system_id": "adobe-commerce",
"display_name": "Adobe Commerce",
@@ -26,6 +38,18 @@
],
"url": ""
},
{
"system_id": "adobe-commerce",
"display_name": "Adobe Commerce",
"source_name": "NVD Adobe Commerce",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "Adobe Magento Security Index is now the active official machine-readable source, so NVD public search is no longer needed for daily collection.",
"replacement_sources": [
"Adobe Magento Security Index"
],
"url": ""
},
{
"system_id": "adobe-commerce",
"display_name": "Adobe Commerce",
@@ -51,6 +75,44 @@
],
"url": ""
},
{
"system_id": "apache-httpd",
"display_name": "Apache HTTP Server",
"source_name": "NVD Apache HTTP Server",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "Official Apache HTTPD advisories page plus CISA KEV are sufficient active sources for daily monitoring.",
"replacement_sources": [
"Apache HTTPD Security",
"CISA KEV Apache HTTPD"
],
"url": ""
},
{
"system_id": "apache-tomcat",
"display_name": "Apache Tomcat",
"source_name": "NVD Tomcat",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "Official Tomcat advisories page plus CISA KEV are sufficient active sources for daily monitoring.",
"replacement_sources": [
"Apache Tomcat Security",
"CISA KEV Tomcat"
],
"url": ""
},
{
"system_id": "aspnet-core",
"display_name": "ASP.NET Core",
"source_name": "NVD ASP.NET Core",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "OSV ASP.NET Core provides machine-readable NuGet-aligned coverage with lower latency than NVD public search.",
"replacement_sources": [
"OSV ASP.NET Core"
],
"url": ""
},
{
"system_id": "astro",
"display_name": "Astro",
@@ -200,6 +262,19 @@
],
"url": ""
},
{
"system_id": "gitlab-ce",
"display_name": "GitLab CE",
"source_name": "NVD GitLab",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "GitLab Security Releases Atom provides an official machine-readable feed, so NVD public search is no longer required.",
"replacement_sources": [
"GitLab Security Releases",
"GitLab Security Releases Atom"
],
"url": ""
},
{
"system_id": "hapi",
"display_name": "Hapi",
@@ -224,6 +299,31 @@
],
"url": "https://www.haproxy.org/security/"
},
{
"system_id": "haproxy",
"display_name": "HAProxy",
"source_name": "NVD HAProxy",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "HAProxy Blog Feed is an active official RSS source, so NVD public search is no longer required.",
"replacement_sources": [
"HAProxy Blog Feed"
],
"url": ""
},
{
"system_id": "jenkins",
"display_name": "Jenkins",
"source_name": "NVD Jenkins",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "Jenkins Security Advisories RSS provides an official machine-readable feed, replacing NVD public search.",
"replacement_sources": [
"Jenkins Security Advisories",
"Jenkins Security Advisories RSS"
],
"url": ""
},
{
"system_id": "joomla",
"display_name": "Joomla",
@@ -237,6 +337,19 @@
],
"url": ""
},
{
"system_id": "kibana",
"display_name": "Kibana",
"source_name": "NVD Kibana",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "Elastic Security Announcements RSS provides an official machine-readable feed, replacing NVD public search.",
"replacement_sources": [
"Elastic Security Announcements",
"Elastic Security Announcements RSS"
],
"url": ""
},
{
"system_id": "koa",
"display_name": "Koa",
@@ -261,6 +374,19 @@
],
"url": ""
},
{
"system_id": "magento-open-source",
"display_name": "Magento Open Source",
"source_name": "NVD Magento",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "OSV Magento Open Source plus Magento GitHub advisories replace NVD public search for machine-readable collection.",
"replacement_sources": [
"Magento GitHub Advisories",
"OSV Magento Open Source"
],
"url": ""
},
{
"system_id": "mattermost",
"display_name": "Mattermost",
@@ -373,6 +499,19 @@
],
"url": ""
},
{
"system_id": "nginx",
"display_name": "Nginx",
"source_name": "NVD NGINX",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "Official NGINX advisories page and CISA KEV together provide the needed daily signal without NVD public-search latency.",
"replacement_sources": [
"NGINX Security Advisories",
"CISA KEV NGINX"
],
"url": ""
},
{
"system_id": "nuxt",
"display_name": "Nuxt",

2
08-threat-intel/generated/run-summary.json
查看文件

@@ -1,5 +1,5 @@
{
"generated_at": "2026-03-19T02:54:09+00:00",
"generated_at": "2026-03-19T03:38:08+00:00",
"system_count": 62,
"advisory_count": 2348,
"markdown_count": 156,

299
08-threat-intel/generated/source-catalog-audit.json
查看文件

@@ -1,20 +1,20 @@
{
"generated_at": "2026-03-19T02:53:49+00:00",
"generated_at": "2026-03-19T03:37:56+00:00",
"system_count": 62,
"source_count": 173,
"active_source_count": 118,
"retired_source_count": 55,
"source_count": 179,
"active_source_count": 113,
"retired_source_count": 66,
"systems_with_active_official": 61,
"systems_with_machine_readable_source": 62,
"systems_with_machine_readable_source": 61,
"systems": [
{
"system_id": "adminer",
"display_name": "Adminer",
"category": "platforms",
"tier": "rolling-24m",
"source_total": 1,
"source_total": 2,
"active_source_total": 1,
"retired_source_total": 0,
"retired_source_total": 1,
"official_active": 1,
"ecosystem_active": 0,
"research_active": 0,
@@ -28,14 +28,14 @@
"category": "ecommerce",
"tier": "history-full",
"source_total": 5,
"active_source_total": 2,
"retired_source_total": 3,
"official_active": 2,
"active_source_total": 1,
"retired_source_total": 4,
"official_active": 1,
"ecosystem_active": 0,
"research_active": 0,
"machine_readable_active": 1,
"machine_readable_active": 0,
"has_active_official": true,
"has_machine_readable_source": true
"has_machine_readable_source": false
},
{
"system_id": "angular",
@@ -58,12 +58,12 @@
"category": "servers",
"tier": "history-full",
"source_total": 3,
"active_source_total": 3,
"retired_source_total": 0,
"official_active": 3,
"active_source_total": 2,
"retired_source_total": 1,
"official_active": 2,
"ecosystem_active": 0,
"research_active": 0,
"machine_readable_active": 2,
"machine_readable_active": 1,
"has_active_official": true,
"has_machine_readable_source": true
},
@@ -73,12 +73,12 @@
"category": "servers",
"tier": "history-full",
"source_total": 3,
"active_source_total": 3,
"retired_source_total": 0,
"official_active": 3,
"active_source_total": 2,
"retired_source_total": 1,
"official_active": 2,
"ecosystem_active": 0,
"research_active": 0,
"machine_readable_active": 2,
"machine_readable_active": 1,
"has_active_official": true,
"has_machine_readable_source": true
},
@@ -87,9 +87,9 @@
"display_name": "ASP.NET Core",
"category": "frameworks",
"tier": "rolling-24m",
"source_total": 1,
"source_total": 2,
"active_source_total": 1,
"retired_source_total": 0,
"retired_source_total": 1,
"official_active": 1,
"ecosystem_active": 0,
"research_active": 0,
@@ -312,9 +312,9 @@
"display_name": "GitLab CE",
"category": "platforms",
"tier": "rolling-24m",
"source_total": 3,
"source_total": 4,
"active_source_total": 3,
"retired_source_total": 0,
"retired_source_total": 1,
"official_active": 2,
"ecosystem_active": 1,
"research_active": 0,
@@ -358,12 +358,12 @@
"category": "servers",
"tier": "rolling-24m",
"source_total": 3,
"active_source_total": 2,
"retired_source_total": 1,
"official_active": 2,
"active_source_total": 1,
"retired_source_total": 2,
"official_active": 1,
"ecosystem_active": 0,
"research_active": 0,
"machine_readable_active": 2,
"machine_readable_active": 1,
"has_active_official": true,
"has_machine_readable_source": true
},
@@ -372,9 +372,9 @@
"display_name": "Jenkins",
"category": "platforms",
"tier": "rolling-24m",
"source_total": 2,
"source_total": 3,
"active_source_total": 2,
"retired_source_total": 0,
"retired_source_total": 1,
"official_active": 2,
"ecosystem_active": 0,
"research_active": 0,
@@ -402,9 +402,9 @@
"display_name": "Kibana",
"category": "platforms",
"tier": "rolling-24m",
"source_total": 2,
"source_total": 3,
"active_source_total": 2,
"retired_source_total": 0,
"retired_source_total": 1,
"official_active": 2,
"ecosystem_active": 0,
"research_active": 0,
@@ -447,9 +447,9 @@
"display_name": "Magento Open Source",
"category": "ecommerce",
"tier": "history-full",
"source_total": 3,
"source_total": 4,
"active_source_total": 3,
"retired_source_total": 0,
"retired_source_total": 1,
"official_active": 2,
"ecosystem_active": 1,
"research_active": 0,
@@ -553,12 +553,12 @@
"category": "servers",
"tier": "history-full",
"source_total": 3,
"active_source_total": 3,
"retired_source_total": 0,
"official_active": 3,
"active_source_total": 2,
"retired_source_total": 1,
"official_active": 2,
"ecosystem_active": 0,
"research_active": 0,
"machine_readable_active": 2,
"machine_readable_active": 1,
"has_active_official": true,
"has_machine_readable_source": true
},
@@ -939,6 +939,18 @@
}
],
"retired_sources": [
{
"system_id": "adminer",
"display_name": "Adminer",
"source_name": "NVD Adminer",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "OSV Adminer provides a machine-readable Packagist-aligned source, removing the need for NVD public search.",
"replacement_sources": [
"OSV Adminer"
],
"url": ""
},
{
"system_id": "adobe-commerce",
"display_name": "Adobe Commerce",
@@ -966,6 +978,18 @@
],
"url": ""
},
{
"system_id": "adobe-commerce",
"display_name": "Adobe Commerce",
"source_name": "NVD Adobe Commerce",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "Adobe Magento Security Index is now the active official machine-readable source, so NVD public search is no longer needed for daily collection.",
"replacement_sources": [
"Adobe Magento Security Index"
],
"url": ""
},
{
"system_id": "adobe-commerce",
"display_name": "Adobe Commerce",
@@ -991,6 +1015,44 @@
],
"url": ""
},
{
"system_id": "apache-httpd",
"display_name": "Apache HTTP Server",
"source_name": "NVD Apache HTTP Server",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "Official Apache HTTPD advisories page plus CISA KEV are sufficient active sources for daily monitoring.",
"replacement_sources": [
"Apache HTTPD Security",
"CISA KEV Apache HTTPD"
],
"url": ""
},
{
"system_id": "apache-tomcat",
"display_name": "Apache Tomcat",
"source_name": "NVD Tomcat",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "Official Tomcat advisories page plus CISA KEV are sufficient active sources for daily monitoring.",
"replacement_sources": [
"Apache Tomcat Security",
"CISA KEV Tomcat"
],
"url": ""
},
{
"system_id": "aspnet-core",
"display_name": "ASP.NET Core",
"source_name": "NVD ASP.NET Core",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "OSV ASP.NET Core provides machine-readable NuGet-aligned coverage with lower latency than NVD public search.",
"replacement_sources": [
"OSV ASP.NET Core"
],
"url": ""
},
{
"system_id": "astro",
"display_name": "Astro",
@@ -1140,6 +1202,19 @@
],
"url": ""
},
{
"system_id": "gitlab-ce",
"display_name": "GitLab CE",
"source_name": "NVD GitLab",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "GitLab Security Releases Atom provides an official machine-readable feed, so NVD public search is no longer required.",
"replacement_sources": [
"GitLab Security Releases",
"GitLab Security Releases Atom"
],
"url": ""
},
{
"system_id": "hapi",
"display_name": "Hapi",
@@ -1164,6 +1239,31 @@
],
"url": "https://www.haproxy.org/security/"
},
{
"system_id": "haproxy",
"display_name": "HAProxy",
"source_name": "NVD HAProxy",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "HAProxy Blog Feed is an active official RSS source, so NVD public search is no longer required.",
"replacement_sources": [
"HAProxy Blog Feed"
],
"url": ""
},
{
"system_id": "jenkins",
"display_name": "Jenkins",
"source_name": "NVD Jenkins",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "Jenkins Security Advisories RSS provides an official machine-readable feed, replacing NVD public search.",
"replacement_sources": [
"Jenkins Security Advisories",
"Jenkins Security Advisories RSS"
],
"url": ""
},
{
"system_id": "joomla",
"display_name": "Joomla",
@@ -1177,6 +1277,19 @@
],
"url": ""
},
{
"system_id": "kibana",
"display_name": "Kibana",
"source_name": "NVD Kibana",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "Elastic Security Announcements RSS provides an official machine-readable feed, replacing NVD public search.",
"replacement_sources": [
"Elastic Security Announcements",
"Elastic Security Announcements RSS"
],
"url": ""
},
{
"system_id": "koa",
"display_name": "Koa",
@@ -1201,6 +1314,19 @@
],
"url": ""
},
{
"system_id": "magento-open-source",
"display_name": "Magento Open Source",
"source_name": "NVD Magento",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "OSV Magento Open Source plus Magento GitHub advisories replace NVD public search for machine-readable collection.",
"replacement_sources": [
"Magento GitHub Advisories",
"OSV Magento Open Source"
],
"url": ""
},
{
"system_id": "mattermost",
"display_name": "Mattermost",
@@ -1313,6 +1439,19 @@
],
"url": ""
},
{
"system_id": "nginx",
"display_name": "Nginx",
"source_name": "NVD NGINX",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "Official NGINX advisories page and CISA KEV together provide the needed daily signal without NVD public-search latency.",
"replacement_sources": [
"NGINX Security Advisories",
"CISA KEV NGINX"
],
"url": ""
},
{
"system_id": "nuxt",
"display_name": "Nuxt",
@@ -1633,6 +1772,13 @@
}
],
"replacement_map": [
{
"system_id": "adminer",
"retired_source": "NVD Adminer",
"replacement_sources": [
"OSV Adminer"
]
},
{
"system_id": "adobe-commerce",
"retired_source": "Adobe Security Bulletins",
@@ -1650,6 +1796,13 @@
"NVD Adobe Commerce"
]
},
{
"system_id": "adobe-commerce",
"retired_source": "NVD Adobe Commerce",
"replacement_sources": [
"Adobe Magento Security Index"
]
},
{
"system_id": "adobe-commerce",
"retired_source": "Sansec Research",
@@ -1665,6 +1818,29 @@
"OSV Angular"
]
},
{
"system_id": "apache-httpd",
"retired_source": "NVD Apache HTTP Server",
"replacement_sources": [
"Apache HTTPD Security",
"CISA KEV Apache HTTPD"
]
},
{
"system_id": "apache-tomcat",
"retired_source": "NVD Tomcat",
"replacement_sources": [
"Apache Tomcat Security",
"CISA KEV Tomcat"
]
},
{
"system_id": "aspnet-core",
"retired_source": "NVD ASP.NET Core",
"replacement_sources": [
"OSV ASP.NET Core"
]
},
{
"system_id": "astro",
"retired_source": "GitHub Global Advisories",
@@ -1754,6 +1930,14 @@
"OSV Ghost"
]
},
{
"system_id": "gitlab-ce",
"retired_source": "NVD GitLab",
"replacement_sources": [
"GitLab Security Releases",
"GitLab Security Releases Atom"
]
},
{
"system_id": "hapi",
"retired_source": "GitHub Global Advisories",
@@ -1768,6 +1952,21 @@
"HAProxy Blog Feed"
]
},
{
"system_id": "haproxy",
"retired_source": "NVD HAProxy",
"replacement_sources": [
"HAProxy Blog Feed"
]
},
{
"system_id": "jenkins",
"retired_source": "NVD Jenkins",
"replacement_sources": [
"Jenkins Security Advisories",
"Jenkins Security Advisories RSS"
]
},
{
"system_id": "joomla",
"retired_source": "NVD Joomla",
@@ -1776,6 +1975,14 @@
"OSV Joomla"
]
},
{
"system_id": "kibana",
"retired_source": "NVD Kibana",
"replacement_sources": [
"Elastic Security Announcements",
"Elastic Security Announcements RSS"
]
},
{
"system_id": "koa",
"retired_source": "GitHub Global Advisories",
@@ -1790,6 +1997,14 @@
"OSV Laravel"
]
},
{
"system_id": "magento-open-source",
"retired_source": "NVD Magento",
"replacement_sources": [
"Magento GitHub Advisories",
"OSV Magento Open Source"
]
},
{
"system_id": "mattermost",
"retired_source": "Mattermost Security Updates",
@@ -1857,6 +2072,14 @@
"OSV Next.js"
]
},
{
"system_id": "nginx",
"retired_source": "NVD NGINX",
"replacement_sources": [
"NGINX Security Advisories",
"CISA KEV NGINX"
]
},
{
"system_id": "nuxt",
"retired_source": "GitHub Global Advisories",

21
08-threat-intel/generated/source-catalog-audit.md
查看文件

@@ -1,19 +1,24 @@
# Source Catalog Audit
- generated_at: `2026-03-19T02:53:49+00:00`
- generated_at: `2026-03-19T03:37:56+00:00`
- systems: `62`
- sources: `173`
- active_sources: `118`
- retired_sources: `55`
- sources: `179`
- active_sources: `113`
- retired_sources: `66`
- systems_with_active_official: `61/62`
- systems_with_machine_readable_source: `62/62`
- systems_with_machine_readable_source: `61/62`
## Retired Sources
- `adminer` `NVD Adminer` -> replacements: `OSV Adminer` | reason: OSV Adminer provides a machine-readable Packagist-aligned source, removing the need for NVD public search.
- `adobe-commerce` `Adobe Security Bulletins` -> replacements: `Adobe Magento Security Index, NVD Adobe Commerce, GHSA Adobe Commerce` | reason: Original bulletin index probe was unstable under the old transport path; vendor index replacement uses explicit request policy and parser hints.
- `adobe-commerce` `GHSA Adobe Commerce` -> replacements: `Adobe Magento Security Index, NVD Adobe Commerce` | reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; Adobe index and NVD remain active replacements.
- `adobe-commerce` `NVD Adobe Commerce` -> replacements: `Adobe Magento Security Index` | reason: Adobe Magento Security Index is now the active official machine-readable source, so NVD public search is no longer needed for daily collection.
- `adobe-commerce` `Sansec Research` -> replacements: `GHSA Adobe Commerce, Adobe Magento Security Index` | reason: Research index is too slow for daily active monitoring; GHSA Adobe Commerce provides a stable machine-readable replacement.
- `angular` `GitHub Global Advisories` -> replacements: `OSV Angular` | reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; OSV Angular remains the active replacement source.
- `apache-httpd` `NVD Apache HTTP Server` -> replacements: `Apache HTTPD Security, CISA KEV Apache HTTPD` | reason: Official Apache HTTPD advisories page plus CISA KEV are sufficient active sources for daily monitoring.
- `apache-tomcat` `NVD Tomcat` -> replacements: `Apache Tomcat Security, CISA KEV Tomcat` | reason: Official Tomcat advisories page plus CISA KEV are sufficient active sources for daily monitoring.
- `aspnet-core` `NVD ASP.NET Core` -> replacements: `OSV ASP.NET Core` | reason: OSV ASP.NET Core provides machine-readable NuGet-aligned coverage with lower latency than NVD public search.
- `astro` `GitHub Global Advisories` -> replacements: `OSV Astro` | reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; OSV Astro remains the active replacement source.
- `discourse` `Discourse Meta Security` -> replacements: `Discourse Release Notes RSS, GitHub Discourse Advisories` | reason: Meta security category HTML changed and no longer provides stable scrape semantics for health checks.
- `discourse` `GitHub Discourse Advisories` -> replacements: `Discourse Release Notes RSS, Discourse Security RSS` | reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; Discourse release feed remains the active official source.
@@ -26,11 +31,16 @@
- `fastify` `GitHub Global Advisories` -> replacements: `OSV Fastify` | reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; OSV Fastify remains the active replacement source.
- `flask` `GitHub Global Advisories` -> replacements: `OSV Flask` | reason: Unauthenticated GitHub advisory API is quota-limited; OSV Flask remains the active machine-readable source.
- `ghost` `NVD Ghost` -> replacements: `Ghost GitHub Advisories, OSV Ghost` | reason: OSV Ghost replaces NVD for machine-readable collection and keeps npm package alignment.
- `gitlab-ce` `NVD GitLab` -> replacements: `GitLab Security Releases, GitLab Security Releases Atom` | reason: GitLab Security Releases Atom provides an official machine-readable feed, so NVD public search is no longer required.
- `hapi` `GitHub Global Advisories` -> replacements: `OSV Hapi` | reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; OSV Hapi remains the active replacement source.
- `haproxy` `HAProxy Security Advisories` -> replacements: `HAProxy Blog Feed` | reason: Legacy haproxy.org security page no longer yields stable scrape results for monitoring.
- `haproxy` `NVD HAProxy` -> replacements: `HAProxy Blog Feed` | reason: HAProxy Blog Feed is an active official RSS source, so NVD public search is no longer required.
- `jenkins` `NVD Jenkins` -> replacements: `Jenkins Security Advisories, Jenkins Security Advisories RSS` | reason: Jenkins Security Advisories RSS provides an official machine-readable feed, replacing NVD public search.
- `joomla` `NVD Joomla` -> replacements: `Joomla Security Centre, OSV Joomla` | reason: OSV Joomla CMS replaces NVD for machine-readable collection without public NVD throttling.
- `kibana` `NVD Kibana` -> replacements: `Elastic Security Announcements, Elastic Security Announcements RSS` | reason: Elastic Security Announcements RSS provides an official machine-readable feed, replacing NVD public search.
- `koa` `GitHub Global Advisories` -> replacements: `OSV Koa` | reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; OSV Koa remains the active replacement source.
- `laravel` `GitHub Global Advisories` -> replacements: `OSV Laravel` | reason: Unauthenticated GitHub advisory API is quota-limited; OSV Laravel remains the active machine-readable source.
- `magento-open-source` `NVD Magento` -> replacements: `Magento GitHub Advisories, OSV Magento Open Source` | reason: OSV Magento Open Source plus Magento GitHub advisories replace NVD public search for machine-readable collection.
- `mattermost` `Mattermost Security Updates` -> replacements: `NVD Mattermost` | reason: Mattermost security updates page returned repeated 403 responses from the collector path; NVD replacement remains active.
- `mattermost` `NVD Mattermost` -> replacements: `Mattermost Security Updates JSON, OSV Mattermost` | reason: Mattermost official JSON feed plus OSV Mattermost replace NVD for lower-latency machine-readable collection.
- `mediawiki` `MediaWiki Security Releases` -> replacements: `MediaWiki Announce RSS, NVD MediaWiki` | reason: MediaWiki security page is no longer reachable reliably from the collector path; NVD replacement remains active.
@@ -40,6 +50,7 @@
- `nestjs` `GitHub Global Advisories` -> replacements: `OSV NestJS` | reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; OSV NestJS remains the active replacement source.
- `nestjs` `NVD NestJS` -> replacements: `OSV NestJS` | reason: OSV NestJS replaces NVD public search for lower-latency machine-readable collection.
- `nextjs` `GitHub Global Advisories` -> replacements: `GitHub Next.js Advisories, OSV Next.js` | reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; GitHub Next.js Advisories and OSV Next.js remain active replacements.
- `nginx` `NVD NGINX` -> replacements: `NGINX Security Advisories, CISA KEV NGINX` | reason: Official NGINX advisories page and CISA KEV together provide the needed daily signal without NVD public-search latency.
- `nuxt` `GitHub Global Advisories` -> replacements: `Nuxt Security, OSV Nuxt` | reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; Nuxt Security and OSV Nuxt remain active replacements.
- `opencart` `NVD OpenCart` -> replacements: `OpenCart Releases, OSV OpenCart` | reason: OSV OpenCart replaces NVD for machine-readable collection while official release source remains active.
- `openmage` `NVD OpenMage` -> replacements: `OpenMage GitHub Advisories, OSV OpenMage` | reason: OSV OpenMage replaces NVD for machine-readable composer-aligned collection.

430
08-threat-intel/generated/source-health.json
查看文件

文件差异内容过多而无法显示 加载差异

3839
08-threat-intel/registry/monitoring/2026-03-19T03-38-01+00-00.json 普通文件
查看文件

文件差异内容过多而无法显示 加载差异

78
08-threat-intel/source-map.yaml
查看文件

@@ -456,6 +456,9 @@ systems:
confidence: official
advisory_mode: core
results_per_page: 50
status: retired
retired_reason: Adobe Magento Security Index is now the active official machine-readable source, so NVD public search is no longer needed for daily collection.
replacement_sources: [Adobe Magento Security Index]
ecosystem_sources:
- name: GHSA Adobe Commerce
kind: ghsa-global
@@ -503,12 +506,19 @@ systems:
advisory_mode: core
keywords: [magento]
max_items: 50
- name: OSV Magento Open Source
kind: osv-batch
confidence: official
advisory_mode: core
- name: NVD Magento
kind: nvd-search
keyword: Magento
confidence: official
advisory_mode: core
results_per_page: 50
status: retired
retired_reason: OSV Magento Open Source plus Magento GitHub advisories replace NVD public search for machine-readable collection.
replacement_sources: [Magento GitHub Advisories, OSV Magento Open Source]
ecosystem_sources:
- name: Sansec Research
kind: html-links
@@ -519,9 +529,9 @@ systems:
max_items: 50
research_sources: []
package_names:
- ecosystem: composer
- ecosystem: Packagist
name: magento/product-community-edition
- ecosystem: composer
- ecosystem: Packagist
name: magento/framework
cpe_keys: ["magento:magento"]
ghsa_keywords: [magento]
@@ -1812,15 +1822,24 @@ systems:
tier: rolling-24m
advisory_modes: [core]
official_sources:
- name: OSV ASP.NET Core
kind: osv-batch
confidence: official
advisory_mode: core
- name: NVD ASP.NET Core
kind: nvd-search
keyword: ASP.NET Core
confidence: official
advisory_mode: core
results_per_page: 40
status: retired
retired_reason: OSV ASP.NET Core provides machine-readable NuGet-aligned coverage with lower latency than NVD public search.
replacement_sources: [OSV ASP.NET Core]
ecosystem_sources: []
research_sources: []
package_names: []
package_names:
- ecosystem: NuGet
name: Microsoft.AspNetCore.App
cpe_keys: ["microsoft:asp.net_core"]
ghsa_keywords: [asp.net core]
kev_keywords: [asp.net core]
@@ -1894,6 +1913,9 @@ systems:
confidence: official
advisory_mode: server
results_per_page: 50
status: retired
retired_reason: Official NGINX advisories page and CISA KEV together provide the needed daily signal without NVD public-search latency.
replacement_sources: [NGINX Security Advisories, CISA KEV NGINX]
- name: CISA KEV NGINX
kind: kev-json
url: https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities.json
@@ -1936,6 +1958,9 @@ systems:
confidence: official
advisory_mode: server
results_per_page: 50
status: retired
retired_reason: Official Apache HTTPD advisories page plus CISA KEV are sufficient active sources for daily monitoring.
replacement_sources: [Apache HTTPD Security, CISA KEV Apache HTTPD]
ecosystem_sources: []
research_sources: []
package_names: []
@@ -1972,6 +1997,9 @@ systems:
confidence: official
advisory_mode: server
results_per_page: 50
status: retired
retired_reason: Official Tomcat advisories page plus CISA KEV are sufficient active sources for daily monitoring.
replacement_sources: [Apache Tomcat Security, CISA KEV Tomcat]
ecosystem_sources: []
research_sources: []
package_names: []
@@ -2072,6 +2100,9 @@ systems:
confidence: official
advisory_mode: server
results_per_page: 40
status: retired
retired_reason: HAProxy Blog Feed is an active official RSS source, so NVD public search is no longer required.
replacement_sources: [HAProxy Blog Feed]
ecosystem_sources: []
research_sources: []
package_names: []
@@ -2128,15 +2159,24 @@ systems:
tier: rolling-24m
advisory_modes: [core]
official_sources:
- name: OSV Adminer
kind: osv-batch
confidence: official
advisory_mode: core
- name: NVD Adminer
kind: nvd-search
keyword: Adminer
confidence: official
advisory_mode: core
results_per_page: 40
status: retired
retired_reason: OSV Adminer provides a machine-readable Packagist-aligned source, removing the need for NVD public search.
replacement_sources: [OSV Adminer]
ecosystem_sources: []
research_sources: []
package_names: []
package_names:
- ecosystem: Packagist
name: vrana/adminer
cpe_keys: ["adminer:adminer"]
ghsa_keywords: [adminer]
kev_keywords: [adminer]
@@ -2188,12 +2228,22 @@ systems:
advisory_mode: core
keywords: [security release, gitlab]
max_items: 50
- name: GitLab Security Releases Atom
kind: atom-feed
url: https://about.gitlab.com/security-releases.xml
confidence: official
advisory_mode: core
keywords: [security release, gitlab]
max_items: 50
- name: NVD GitLab
kind: nvd-search
keyword: GitLab CE
confidence: official
advisory_mode: core
results_per_page: 40
status: retired
retired_reason: GitLab Security Releases Atom provides an official machine-readable feed, so NVD public search is no longer required.
replacement_sources: [GitLab Security Releases, GitLab Security Releases Atom]
ecosystem_sources:
- name: GitLab Advisory Database
kind: html-links
@@ -2225,12 +2275,22 @@ systems:
advisory_mode: core
keywords: [jenkins]
max_items: 60
- name: Jenkins Security Advisories RSS
kind: rss-feed
url: https://www.jenkins.io/security/advisories/rss.xml
confidence: official
advisory_mode: core
keywords: [jenkins]
max_items: 60
- name: NVD Jenkins
kind: nvd-search
keyword: Jenkins
confidence: official
advisory_mode: core
results_per_page: 40
status: retired
retired_reason: Jenkins Security Advisories RSS provides an official machine-readable feed, replacing NVD public search.
replacement_sources: [Jenkins Security Advisories, Jenkins Security Advisories RSS]
ecosystem_sources: []
research_sources: []
package_names: []
@@ -2286,12 +2346,22 @@ systems:
advisory_mode: core
keywords: [kibana, elastic, security]
max_items: 60
- name: Elastic Security Announcements RSS
kind: rss-feed
url: https://discuss.elastic.co/c/announcements/security-announcements/31.rss
confidence: official
advisory_mode: core
keywords: [kibana, elastic, security]
max_items: 60
- name: NVD Kibana
kind: nvd-search
keyword: Kibana
confidence: official
advisory_mode: core
results_per_page: 40
status: retired
retired_reason: Elastic Security Announcements RSS provides an official machine-readable feed, replacing NVD public search.
replacement_sources: [Elastic Security Announcements, Elastic Security Announcements RSS]
ecosystem_sources: []
research_sources: []
package_names: []