hao/websafe-kb
1
0
派生 0
代码 工单 合并请求 1 工作流 软件包 项目 发布 百科 活动

Retire remaining active NVD sources

浏览代码
这个提交包含在:
hao
2026-03-18 20:38:36 -07:00
父节点 eb0e5d587a
当前提交 b0398f30b5
修改 83 个文件,包含 5344 行新增693 行删除
下载 Patch 文件 下载 Diff 文件 展开所有文件 折叠所有文件

299
08-threat-intel/generated/dashboard/data/source-catalog-audit.json
查看文件

@@ -1,20 +1,20 @@
{
"generated_at": "2026-03-19T02:53:49+00:00",
"generated_at": "2026-03-19T03:37:56+00:00",
"system_count": 62,
"source_count": 173,
"active_source_count": 118,
"retired_source_count": 55,
"source_count": 179,
"active_source_count": 113,
"retired_source_count": 66,
"systems_with_active_official": 61,
"systems_with_machine_readable_source": 62,
"systems_with_machine_readable_source": 61,
"systems": [
{
"system_id": "adminer",
"display_name": "Adminer",
"category": "platforms",
"tier": "rolling-24m",
"source_total": 1,
"source_total": 2,
"active_source_total": 1,
"retired_source_total": 0,
"retired_source_total": 1,
"official_active": 1,
"ecosystem_active": 0,
"research_active": 0,
@@ -28,14 +28,14 @@
"category": "ecommerce",
"tier": "history-full",
"source_total": 5,
"active_source_total": 2,
"retired_source_total": 3,
"official_active": 2,
"active_source_total": 1,
"retired_source_total": 4,
"official_active": 1,
"ecosystem_active": 0,
"research_active": 0,
"machine_readable_active": 1,
"machine_readable_active": 0,
"has_active_official": true,
"has_machine_readable_source": true
"has_machine_readable_source": false
},
{
"system_id": "angular",
@@ -58,12 +58,12 @@
"category": "servers",
"tier": "history-full",
"source_total": 3,
"active_source_total": 3,
"retired_source_total": 0,
"official_active": 3,
"active_source_total": 2,
"retired_source_total": 1,
"official_active": 2,
"ecosystem_active": 0,
"research_active": 0,
"machine_readable_active": 2,
"machine_readable_active": 1,
"has_active_official": true,
"has_machine_readable_source": true
},
@@ -73,12 +73,12 @@
"category": "servers",
"tier": "history-full",
"source_total": 3,
"active_source_total": 3,
"retired_source_total": 0,
"official_active": 3,
"active_source_total": 2,
"retired_source_total": 1,
"official_active": 2,
"ecosystem_active": 0,
"research_active": 0,
"machine_readable_active": 2,
"machine_readable_active": 1,
"has_active_official": true,
"has_machine_readable_source": true
},
@@ -87,9 +87,9 @@
"display_name": "ASP.NET Core",
"category": "frameworks",
"tier": "rolling-24m",
"source_total": 1,
"source_total": 2,
"active_source_total": 1,
"retired_source_total": 0,
"retired_source_total": 1,
"official_active": 1,
"ecosystem_active": 0,
"research_active": 0,
@@ -312,9 +312,9 @@
"display_name": "GitLab CE",
"category": "platforms",
"tier": "rolling-24m",
"source_total": 3,
"source_total": 4,
"active_source_total": 3,
"retired_source_total": 0,
"retired_source_total": 1,
"official_active": 2,
"ecosystem_active": 1,
"research_active": 0,
@@ -358,12 +358,12 @@
"category": "servers",
"tier": "rolling-24m",
"source_total": 3,
"active_source_total": 2,
"retired_source_total": 1,
"official_active": 2,
"active_source_total": 1,
"retired_source_total": 2,
"official_active": 1,
"ecosystem_active": 0,
"research_active": 0,
"machine_readable_active": 2,
"machine_readable_active": 1,
"has_active_official": true,
"has_machine_readable_source": true
},
@@ -372,9 +372,9 @@
"display_name": "Jenkins",
"category": "platforms",
"tier": "rolling-24m",
"source_total": 2,
"source_total": 3,
"active_source_total": 2,
"retired_source_total": 0,
"retired_source_total": 1,
"official_active": 2,
"ecosystem_active": 0,
"research_active": 0,
@@ -402,9 +402,9 @@
"display_name": "Kibana",
"category": "platforms",
"tier": "rolling-24m",
"source_total": 2,
"source_total": 3,
"active_source_total": 2,
"retired_source_total": 0,
"retired_source_total": 1,
"official_active": 2,
"ecosystem_active": 0,
"research_active": 0,
@@ -447,9 +447,9 @@
"display_name": "Magento Open Source",
"category": "ecommerce",
"tier": "history-full",
"source_total": 3,
"source_total": 4,
"active_source_total": 3,
"retired_source_total": 0,
"retired_source_total": 1,
"official_active": 2,
"ecosystem_active": 1,
"research_active": 0,
@@ -553,12 +553,12 @@
"category": "servers",
"tier": "history-full",
"source_total": 3,
"active_source_total": 3,
"retired_source_total": 0,
"official_active": 3,
"active_source_total": 2,
"retired_source_total": 1,
"official_active": 2,
"ecosystem_active": 0,
"research_active": 0,
"machine_readable_active": 2,
"machine_readable_active": 1,
"has_active_official": true,
"has_machine_readable_source": true
},
@@ -939,6 +939,18 @@
}
],
"retired_sources": [
{
"system_id": "adminer",
"display_name": "Adminer",
"source_name": "NVD Adminer",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "OSV Adminer provides a machine-readable Packagist-aligned source, removing the need for NVD public search.",
"replacement_sources": [
"OSV Adminer"
],
"url": ""
},
{
"system_id": "adobe-commerce",
"display_name": "Adobe Commerce",
@@ -966,6 +978,18 @@
],
"url": ""
},
{
"system_id": "adobe-commerce",
"display_name": "Adobe Commerce",
"source_name": "NVD Adobe Commerce",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "Adobe Magento Security Index is now the active official machine-readable source, so NVD public search is no longer needed for daily collection.",
"replacement_sources": [
"Adobe Magento Security Index"
],
"url": ""
},
{
"system_id": "adobe-commerce",
"display_name": "Adobe Commerce",
@@ -991,6 +1015,44 @@
],
"url": ""
},
{
"system_id": "apache-httpd",
"display_name": "Apache HTTP Server",
"source_name": "NVD Apache HTTP Server",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "Official Apache HTTPD advisories page plus CISA KEV are sufficient active sources for daily monitoring.",
"replacement_sources": [
"Apache HTTPD Security",
"CISA KEV Apache HTTPD"
],
"url": ""
},
{
"system_id": "apache-tomcat",
"display_name": "Apache Tomcat",
"source_name": "NVD Tomcat",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "Official Tomcat advisories page plus CISA KEV are sufficient active sources for daily monitoring.",
"replacement_sources": [
"Apache Tomcat Security",
"CISA KEV Tomcat"
],
"url": ""
},
{
"system_id": "aspnet-core",
"display_name": "ASP.NET Core",
"source_name": "NVD ASP.NET Core",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "OSV ASP.NET Core provides machine-readable NuGet-aligned coverage with lower latency than NVD public search.",
"replacement_sources": [
"OSV ASP.NET Core"
],
"url": ""
},
{
"system_id": "astro",
"display_name": "Astro",
@@ -1140,6 +1202,19 @@
],
"url": ""
},
{
"system_id": "gitlab-ce",
"display_name": "GitLab CE",
"source_name": "NVD GitLab",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "GitLab Security Releases Atom provides an official machine-readable feed, so NVD public search is no longer required.",
"replacement_sources": [
"GitLab Security Releases",
"GitLab Security Releases Atom"
],
"url": ""
},
{
"system_id": "hapi",
"display_name": "Hapi",
@@ -1164,6 +1239,31 @@
],
"url": "https://www.haproxy.org/security/"
},
{
"system_id": "haproxy",
"display_name": "HAProxy",
"source_name": "NVD HAProxy",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "HAProxy Blog Feed is an active official RSS source, so NVD public search is no longer required.",
"replacement_sources": [
"HAProxy Blog Feed"
],
"url": ""
},
{
"system_id": "jenkins",
"display_name": "Jenkins",
"source_name": "NVD Jenkins",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "Jenkins Security Advisories RSS provides an official machine-readable feed, replacing NVD public search.",
"replacement_sources": [
"Jenkins Security Advisories",
"Jenkins Security Advisories RSS"
],
"url": ""
},
{
"system_id": "joomla",
"display_name": "Joomla",
@@ -1177,6 +1277,19 @@
],
"url": ""
},
{
"system_id": "kibana",
"display_name": "Kibana",
"source_name": "NVD Kibana",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "Elastic Security Announcements RSS provides an official machine-readable feed, replacing NVD public search.",
"replacement_sources": [
"Elastic Security Announcements",
"Elastic Security Announcements RSS"
],
"url": ""
},
{
"system_id": "koa",
"display_name": "Koa",
@@ -1201,6 +1314,19 @@
],
"url": ""
},
{
"system_id": "magento-open-source",
"display_name": "Magento Open Source",
"source_name": "NVD Magento",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "OSV Magento Open Source plus Magento GitHub advisories replace NVD public search for machine-readable collection.",
"replacement_sources": [
"Magento GitHub Advisories",
"OSV Magento Open Source"
],
"url": ""
},
{
"system_id": "mattermost",
"display_name": "Mattermost",
@@ -1313,6 +1439,19 @@
],
"url": ""
},
{
"system_id": "nginx",
"display_name": "Nginx",
"source_name": "NVD NGINX",
"bucket": "official_sources",
"kind": "nvd-search",
"retired_reason": "Official NGINX advisories page and CISA KEV together provide the needed daily signal without NVD public-search latency.",
"replacement_sources": [
"NGINX Security Advisories",
"CISA KEV NGINX"
],
"url": ""
},
{
"system_id": "nuxt",
"display_name": "Nuxt",
@@ -1633,6 +1772,13 @@
}
],
"replacement_map": [
{
"system_id": "adminer",
"retired_source": "NVD Adminer",
"replacement_sources": [
"OSV Adminer"
]
},
{
"system_id": "adobe-commerce",
"retired_source": "Adobe Security Bulletins",
@@ -1650,6 +1796,13 @@
"NVD Adobe Commerce"
]
},
{
"system_id": "adobe-commerce",
"retired_source": "NVD Adobe Commerce",
"replacement_sources": [
"Adobe Magento Security Index"
]
},
{
"system_id": "adobe-commerce",
"retired_source": "Sansec Research",
@@ -1665,6 +1818,29 @@
"OSV Angular"
]
},
{
"system_id": "apache-httpd",
"retired_source": "NVD Apache HTTP Server",
"replacement_sources": [
"Apache HTTPD Security",
"CISA KEV Apache HTTPD"
]
},
{
"system_id": "apache-tomcat",
"retired_source": "NVD Tomcat",
"replacement_sources": [
"Apache Tomcat Security",
"CISA KEV Tomcat"
]
},
{
"system_id": "aspnet-core",
"retired_source": "NVD ASP.NET Core",
"replacement_sources": [
"OSV ASP.NET Core"
]
},
{
"system_id": "astro",
"retired_source": "GitHub Global Advisories",
@@ -1754,6 +1930,14 @@
"OSV Ghost"
]
},
{
"system_id": "gitlab-ce",
"retired_source": "NVD GitLab",
"replacement_sources": [
"GitLab Security Releases",
"GitLab Security Releases Atom"
]
},
{
"system_id": "hapi",
"retired_source": "GitHub Global Advisories",
@@ -1768,6 +1952,21 @@
"HAProxy Blog Feed"
]
},
{
"system_id": "haproxy",
"retired_source": "NVD HAProxy",
"replacement_sources": [
"HAProxy Blog Feed"
]
},
{
"system_id": "jenkins",
"retired_source": "NVD Jenkins",
"replacement_sources": [
"Jenkins Security Advisories",
"Jenkins Security Advisories RSS"
]
},
{
"system_id": "joomla",
"retired_source": "NVD Joomla",
@@ -1776,6 +1975,14 @@
"OSV Joomla"
]
},
{
"system_id": "kibana",
"retired_source": "NVD Kibana",
"replacement_sources": [
"Elastic Security Announcements",
"Elastic Security Announcements RSS"
]
},
{
"system_id": "koa",
"retired_source": "GitHub Global Advisories",
@@ -1790,6 +1997,14 @@
"OSV Laravel"
]
},
{
"system_id": "magento-open-source",
"retired_source": "NVD Magento",
"replacement_sources": [
"Magento GitHub Advisories",
"OSV Magento Open Source"
]
},
{
"system_id": "mattermost",
"retired_source": "Mattermost Security Updates",
@@ -1857,6 +2072,14 @@
"OSV Next.js"
]
},
{
"system_id": "nginx",
"retired_source": "NVD NGINX",
"replacement_sources": [
"NGINX Security Advisories",
"CISA KEV NGINX"
]
},
{
"system_id": "nuxt",
"retired_source": "GitHub Global Advisories",