version: 1 systems: - system_id: wordpress display_name: WordPress category: cms tier: history-full advisory_modes: [core, plugin] official_sources: - name: WordPress Security News kind: html-links url: https://wordpress.org/news/category/security/ confidence: official advisory_mode: core keywords: [wordpress, security, release] max_items: 40 - name: NVD WordPress kind: nvd-search keyword: WordPress confidence: official advisory_mode: core results_per_page: 50 ecosystem_sources: - name: Wordfence Vulnerability Database kind: html-links url: https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/ confidence: ecosystem-authority advisory_mode: plugin keywords: [wordpress, plugin] max_items: 50 - name: Patchstack Database kind: html-links url: https://patchstack.com/database/ confidence: ecosystem-authority advisory_mode: plugin keywords: [wordpress, plugin, theme] max_items: 50 - name: WPScan Vulnerability Database kind: html-links url: https://wpscan.com/blog/ confidence: ecosystem-authority advisory_mode: plugin keywords: [wordpress, plugin, vulnerability] max_items: 50 research_sources: - name: PortSwigger Research kind: html-links url: https://portswigger.net/research confidence: research advisory_mode: core keywords: [wordpress] max_items: 20 package_names: [] cpe_keys: ["wordpress:wordpress"] ghsa_keywords: [wordpress, wp-admin, wp-includes] kev_keywords: [wordpress] output_dir: 07-framework-security/cms/wordpress secure_code_topics: [plugin-extension-trust-policy, xss-output-encoding, file-upload-validation, token-cookie-storage] render_policy: core_always_markdown: true extension_markdown_on_high_value: true - system_id: drupal display_name: Drupal category: cms tier: history-full advisory_modes: [core, module] official_sources: - name: Drupal Security Advisories RSS kind: rss-feed url: https://www.drupal.org/security/rss.xml confidence: official advisory_mode: core keywords: [drupal, sa-core, security] max_items: 60 - name: NVD Drupal kind: nvd-search keyword: Drupal confidence: official advisory_mode: core results_per_page: 50 ecosystem_sources: - name: Drupal Security Advisories Site kind: html-links url: https://www.drupal.org/security confidence: ecosystem-authority advisory_mode: module keywords: [drupal, module, sa-contrib] max_items: 50 status: retired retired_reason: Drupal security index page became unstable for repeated HTML scraping; RSS + GHSA replacement is used for active monitoring. replacement_sources: [Drupal Security Advisories RSS, GHSA Drupal Core] - name: GHSA Drupal Core kind: ghsa-global ecosystem: composer confidence: ecosystem-authority advisory_mode: core status: retired retired_reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; RSS and NVD remain active replacements. replacement_sources: [Drupal Security Advisories RSS, NVD Drupal] research_sources: [] package_names: - ecosystem: composer name: drupal/core cpe_keys: ["drupal:drupal"] ghsa_keywords: [drupal, drupal core] kev_keywords: [drupal] output_dir: 07-framework-security/cms/drupal secure_code_topics: [authz-server-side-recheck, xss-output-encoding, file-upload-validation, plugin-extension-trust-policy] render_policy: core_always_markdown: true extension_markdown_on_high_value: true - system_id: joomla display_name: Joomla category: cms tier: history-full advisory_modes: [core, extension] official_sources: - name: Joomla Security Centre kind: html-links url: https://developer.joomla.org/security-centre.html confidence: official advisory_mode: core keywords: [joomla, security] max_items: 50 - name: NVD Joomla kind: nvd-search keyword: Joomla confidence: official advisory_mode: core results_per_page: 50 ecosystem_sources: [] research_sources: [] package_names: [] cpe_keys: ["joomla:joomla!"] ghsa_keywords: [joomla] kev_keywords: [joomla] output_dir: 07-framework-security/cms/joomla secure_code_topics: [xss-output-encoding, file-upload-validation, path-traversal-guard, plugin-extension-trust-policy] render_policy: core_always_markdown: true extension_markdown_on_high_value: true - system_id: ghost display_name: Ghost category: cms tier: rolling-24m advisory_modes: [core] official_sources: - name: Ghost GitHub Advisories kind: html-links url: https://github.com/TryGhost/Ghost/security/advisories confidence: official advisory_mode: core keywords: [ghost] max_items: 50 - name: NVD Ghost kind: nvd-search keyword: Ghost CMS confidence: official advisory_mode: core results_per_page: 40 ecosystem_sources: [] research_sources: [] package_names: - ecosystem: npm name: ghost cpe_keys: [] ghsa_keywords: [ghost] kev_keywords: [ghost] output_dir: 07-framework-security/cms/ghost secure_code_topics: [authz-server-side-recheck, xss-output-encoding, token-cookie-storage] render_policy: core_always_markdown: true - system_id: strapi display_name: Strapi category: cms tier: rolling-24m advisory_modes: [core, plugin] official_sources: - name: Strapi GitHub Advisories kind: html-links url: https://github.com/strapi/strapi/security/advisories confidence: official advisory_mode: core keywords: [strapi] max_items: 50 - name: OSV Strapi kind: osv-batch confidence: official advisory_mode: core ecosystem_sources: [] research_sources: [] package_names: - ecosystem: npm name: strapi - ecosystem: npm name: "@strapi/strapi" cpe_keys: [] ghsa_keywords: [strapi] kev_keywords: [strapi] output_dir: 07-framework-security/cms/strapi secure_code_topics: [authz-server-side-recheck, token-cookie-storage, file-upload-validation] render_policy: core_always_markdown: true - system_id: directus display_name: Directus category: cms tier: rolling-24m advisory_modes: [core, extension] official_sources: - name: Directus GitHub Advisories kind: html-links url: https://github.com/directus/directus/security/advisories confidence: official advisory_mode: core keywords: [directus] max_items: 50 - name: OSV Directus kind: osv-batch confidence: official advisory_mode: core ecosystem_sources: [] research_sources: [] package_names: - ecosystem: npm name: directus cpe_keys: [] ghsa_keywords: [directus] kev_keywords: [directus] output_dir: 07-framework-security/cms/directus secure_code_topics: [authz-server-side-recheck, token-cookie-storage, file-upload-validation] render_policy: core_always_markdown: true - system_id: mediawiki display_name: MediaWiki category: cms tier: rolling-24m advisory_modes: [core, extension] official_sources: - name: MediaWiki Security Releases kind: html-links url: https://www.mediawiki.org/wiki/Security confidence: official advisory_mode: core keywords: [mediawiki, security] max_items: 50 status: retired retired_reason: MediaWiki security page is no longer reachable reliably from the collector path; NVD replacement remains active. replacement_sources: [NVD MediaWiki] - name: NVD MediaWiki kind: nvd-search keyword: MediaWiki confidence: official advisory_mode: core results_per_page: 40 ecosystem_sources: [] research_sources: [] package_names: [] cpe_keys: ["mediawiki:mediawiki"] ghsa_keywords: [mediawiki] kev_keywords: [mediawiki] output_dir: 07-framework-security/cms/mediawiki secure_code_topics: [xss-output-encoding, authz-server-side-recheck, file-upload-validation] render_policy: core_always_markdown: true - system_id: moodle display_name: Moodle category: cms tier: rolling-24m advisory_modes: [core, plugin] official_sources: - name: Moodle Security News kind: html-links url: https://moodle.org/security/ confidence: official advisory_mode: core keywords: [moodle, security] max_items: 50 status: retired retired_reason: Moodle security page returned repeated 403 responses from the collector path; NVD replacement remains active. replacement_sources: [NVD Moodle] - name: NVD Moodle kind: nvd-search keyword: Moodle confidence: official advisory_mode: core results_per_page: 40 ecosystem_sources: [] research_sources: [] package_names: [] cpe_keys: ["moodle:moodle"] ghsa_keywords: [moodle] kev_keywords: [moodle] output_dir: 07-framework-security/cms/moodle secure_code_topics: [authz-server-side-recheck, xss-output-encoding, file-upload-validation] render_policy: core_always_markdown: true - system_id: discourse display_name: Discourse category: cms tier: rolling-24m advisory_modes: [core, plugin] official_sources: - name: Discourse Meta Security kind: html-links url: https://meta.discourse.org/c/bug/security/40 confidence: official advisory_mode: core keywords: [discourse, security] max_items: 50 status: retired retired_reason: Meta security category HTML changed and no longer provides stable scrape semantics for health checks. replacement_sources: [Discourse Release Notes RSS, GitHub Discourse Advisories] - name: Discourse Release Notes RSS kind: rss-feed url: https://meta.discourse.org/tag/release-notes.rss confidence: official advisory_mode: core keywords: [discourse, security, cve] max_items: 60 - name: GitHub Discourse Advisories kind: ghsa-global ecosystem: rubygems confidence: official advisory_mode: core status: retired retired_reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; Discourse release feed remains the active official source. replacement_sources: [Discourse Release Notes RSS] ecosystem_sources: [] research_sources: [] package_names: - ecosystem: rubygems name: discourse cpe_keys: [] ghsa_keywords: [discourse] kev_keywords: [discourse] output_dir: 07-framework-security/cms/discourse secure_code_topics: [authz-server-side-recheck, xss-output-encoding, plugin-extension-trust-policy] render_policy: core_always_markdown: true - system_id: adobe-commerce display_name: Adobe Commerce category: ecommerce tier: history-full advisory_modes: [core, extension] official_sources: - name: Adobe Security Bulletins kind: html-links url: https://helpx.adobe.com/security/products/magento.html confidence: official advisory_mode: core keywords: [adobe commerce, magento, apsb] max_items: 60 status: retired retired_reason: Original bulletin index probe was unstable under the old transport path; vendor index replacement uses explicit request policy and parser hints. replacement_sources: [Adobe Magento Security Index, NVD Adobe Commerce, GHSA Adobe Commerce] - name: Adobe Magento Security Index kind: vendor-index url: https://helpx.adobe.com/security/products/magento.html confidence: official advisory_mode: core keywords: [adobe commerce, magento, apsb, security] max_items: 60 request_policy: user_agent: python-requests/2.31.0 timeout_seconds: 45 verify_tls: false http_version: "1.1" parser_hints: keywords: [adobe commerce, magento, apsb, security] include_url_patterns: [magento, security, APSB] - name: NVD Adobe Commerce kind: nvd-search keyword: Adobe Commerce confidence: official advisory_mode: core results_per_page: 50 ecosystem_sources: - name: GHSA Adobe Commerce kind: ghsa-global ecosystem: composer confidence: ecosystem-authority advisory_mode: core status: retired retired_reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; Adobe index and NVD remain active replacements. replacement_sources: [Adobe Magento Security Index, NVD Adobe Commerce] - name: Sansec Research kind: vendor-index url: https://sansec.io/research confidence: ecosystem-authority advisory_mode: extension keywords: [magento, adobe commerce] max_items: 50 status: retired retired_reason: Research index is too slow for daily active monitoring; GHSA Adobe Commerce provides a stable machine-readable replacement. replacement_sources: [GHSA Adobe Commerce, Adobe Magento Security Index] research_sources: [] package_names: - ecosystem: composer name: magento/product-community-edition - ecosystem: composer name: magento/framework cpe_keys: ["adobe:commerce", "magento:magento"] ghsa_keywords: [magento, adobe commerce] kev_keywords: [magento, adobe commerce] output_dir: 07-framework-security/ecommerce/adobe-commerce secure_code_topics: [authz-server-side-recheck, file-upload-validation, xss-output-encoding, plugin-extension-trust-policy] render_policy: core_always_markdown: true extension_markdown_on_high_value: true - system_id: magento-open-source display_name: Magento Open Source category: ecommerce tier: history-full advisory_modes: [core, extension] official_sources: - name: Magento GitHub Advisories kind: html-links url: https://github.com/magento/magento2/security/advisories confidence: official advisory_mode: core keywords: [magento] max_items: 50 - name: NVD Magento kind: nvd-search keyword: Magento confidence: official advisory_mode: core results_per_page: 50 ecosystem_sources: - name: Sansec Research kind: html-links url: https://sansec.io/research confidence: ecosystem-authority advisory_mode: extension keywords: [magento] max_items: 50 research_sources: [] package_names: - ecosystem: composer name: magento/product-community-edition - ecosystem: composer name: magento/framework cpe_keys: ["magento:magento"] ghsa_keywords: [magento] kev_keywords: [magento] output_dir: 07-framework-security/ecommerce/magento-open-source secure_code_topics: [authz-server-side-recheck, file-upload-validation, plugin-extension-trust-policy] render_policy: core_always_markdown: true extension_markdown_on_high_value: true - system_id: openmage display_name: OpenMage / Mage-OS category: ecommerce tier: rolling-24m advisory_modes: [core, extension] official_sources: - name: OpenMage GitHub Advisories kind: html-links url: https://github.com/OpenMage/magento-lts/security/advisories confidence: official advisory_mode: core keywords: [openmage, mage] max_items: 50 - name: NVD OpenMage kind: nvd-search keyword: OpenMage confidence: official advisory_mode: core results_per_page: 40 ecosystem_sources: [] research_sources: [] package_names: - ecosystem: composer name: openmage/magento-lts cpe_keys: [] ghsa_keywords: [openmage, mage-os] kev_keywords: [openmage] output_dir: 07-framework-security/ecommerce/openmage secure_code_topics: [authz-server-side-recheck, plugin-extension-trust-policy] render_policy: core_always_markdown: true - system_id: woocommerce display_name: WooCommerce category: ecommerce tier: history-full advisory_modes: [core, extension] official_sources: - name: Woo Developer Advisories kind: html-links url: https://developer.woocommerce.com/ confidence: official advisory_mode: core keywords: [woocommerce, security] max_items: 50 - name: GitHub WooCommerce Advisories kind: html-links url: https://github.com/woocommerce/woocommerce/security/advisories confidence: official advisory_mode: core keywords: [woocommerce] max_items: 50 ecosystem_sources: - name: Patchstack Database kind: html-links url: https://patchstack.com/database/ confidence: ecosystem-authority advisory_mode: extension keywords: [woocommerce] max_items: 50 - name: Wordfence Vulnerability Database kind: html-links url: https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/ confidence: ecosystem-authority advisory_mode: extension keywords: [woocommerce] max_items: 50 research_sources: [] package_names: - ecosystem: npm name: "@woocommerce/blocks" - ecosystem: composer name: woocommerce/woocommerce cpe_keys: [] ghsa_keywords: [woocommerce] kev_keywords: [woocommerce] output_dir: 07-framework-security/ecommerce/woocommerce secure_code_topics: [plugin-extension-trust-policy, xss-output-encoding, authz-server-side-recheck] render_policy: core_always_markdown: true extension_markdown_on_high_value: true - system_id: prestashop display_name: PrestaShop category: ecommerce tier: history-full advisory_modes: [core, module] official_sources: - name: PrestaShop Security Page kind: html-links url: https://build.prestashop-project.org/news/ confidence: official advisory_mode: core keywords: [prestashop, security] max_items: 50 - name: GitHub PrestaShop Advisories kind: html-links url: https://github.com/PrestaShop/PrestaShop/security/advisories confidence: official advisory_mode: core keywords: [prestashop] max_items: 50 ecosystem_sources: - name: Friends Of Presta Security kind: html-links url: https://security.friendsofpresta.org/ confidence: ecosystem-authority advisory_mode: module keywords: [prestashop, module] max_items: 50 research_sources: [] package_names: - ecosystem: composer name: prestashop/prestashop cpe_keys: ["prestashop:prestashop"] ghsa_keywords: [prestashop] kev_keywords: [prestashop] output_dir: 07-framework-security/ecommerce/prestashop secure_code_topics: [plugin-extension-trust-policy, authz-server-side-recheck, file-upload-validation] render_policy: core_always_markdown: true extension_markdown_on_high_value: true - system_id: shopware display_name: Shopware category: ecommerce tier: history-full advisory_modes: [core, extension] official_sources: - name: Shopware Security Advisories kind: html-links url: https://github.com/shopware/shopware/security/advisories confidence: official advisory_mode: core keywords: [shopware] max_items: 50 - name: NVD Shopware kind: nvd-search keyword: Shopware confidence: official advisory_mode: core results_per_page: 40 ecosystem_sources: [] research_sources: [] package_names: - ecosystem: composer name: shopware/platform cpe_keys: [] ghsa_keywords: [shopware] kev_keywords: [shopware] output_dir: 07-framework-security/ecommerce/shopware secure_code_topics: [authz-server-side-recheck, plugin-extension-trust-policy, file-upload-validation] render_policy: core_always_markdown: true - system_id: opencart display_name: OpenCart category: ecommerce tier: history-full advisory_modes: [core, extension] official_sources: - name: OpenCart Releases kind: html-links url: https://github.com/opencart/opencart/releases confidence: official advisory_mode: core keywords: [opencart] max_items: 50 - name: NVD OpenCart kind: nvd-search keyword: OpenCart confidence: official advisory_mode: core results_per_page: 50 ecosystem_sources: [] research_sources: [] package_names: - ecosystem: composer name: opencart/opencart cpe_keys: ["opencart:opencart"] ghsa_keywords: [opencart] kev_keywords: [opencart] output_dir: 07-framework-security/ecommerce/opencart secure_code_topics: [authz-server-side-recheck, plugin-extension-trust-policy, file-upload-validation] render_policy: core_always_markdown: true - system_id: saleor display_name: Saleor category: ecommerce tier: rolling-24m advisory_modes: [core, extension] official_sources: - name: GitHub Saleor Advisories kind: html-links url: https://github.com/saleor/saleor/security/advisories confidence: official advisory_mode: core keywords: [saleor] max_items: 50 - name: NVD Saleor kind: nvd-search keyword: Saleor confidence: official advisory_mode: core results_per_page: 40 ecosystem_sources: [] research_sources: [] package_names: - ecosystem: pypi name: saleor cpe_keys: [] ghsa_keywords: [saleor] kev_keywords: [saleor] output_dir: 07-framework-security/ecommerce/saleor secure_code_topics: [authz-server-side-recheck, token-cookie-storage] render_policy: core_always_markdown: true - system_id: medusa display_name: Medusa category: ecommerce tier: rolling-24m advisory_modes: [core, extension] official_sources: - name: GitHub Medusa Advisories kind: html-links url: https://github.com/medusajs/medusa/security/advisories confidence: official advisory_mode: core keywords: [medusa] max_items: 50 - name: OSV Medusa kind: osv-batch confidence: official advisory_mode: core ecosystem_sources: [] research_sources: [] package_names: - ecosystem: npm name: "@medusajs/medusa" cpe_keys: [] ghsa_keywords: [medusa] kev_keywords: [medusa] output_dir: 07-framework-security/ecommerce/medusa secure_code_topics: [authz-server-side-recheck, token-cookie-storage] render_policy: core_always_markdown: true - system_id: react display_name: React category: frameworks tier: history-full advisory_modes: [core] official_sources: - name: GitHub React Advisories kind: html-links url: https://github.com/facebook/react/security/advisories confidence: official advisory_mode: core keywords: [react] max_items: 50 - name: GHSA React kind: ghsa-global ecosystem: npm name: GitHub Global Advisories confidence: official advisory_mode: core status: retired retired_reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; GitHub React Advisories and OSV React remain active replacements. replacement_sources: [GitHub React Advisories, OSV React] - name: OSV React kind: osv-batch confidence: official advisory_mode: core ecosystem_sources: [] research_sources: [] package_names: - ecosystem: npm name: react - ecosystem: npm name: react-dom cpe_keys: [] ghsa_keywords: [react, react-dom] kev_keywords: [react] output_dir: 07-framework-security/frameworks/react secure_code_topics: [xss-output-encoding, dom-sink-hardening, csp-trusted-types] render_policy: core_always_markdown: true - system_id: nextjs display_name: Next.js category: frameworks tier: history-full advisory_modes: [core] official_sources: - name: GitHub Next.js Advisories kind: html-links url: https://github.com/vercel/next.js/security/advisories confidence: official advisory_mode: core keywords: [next.js, next] max_items: 50 - name: GHSA Next.js kind: ghsa-global ecosystem: npm name: GitHub Global Advisories confidence: official advisory_mode: core status: retired retired_reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; GitHub Next.js Advisories and OSV Next.js remain active replacements. replacement_sources: [GitHub Next.js Advisories, OSV Next.js] - name: OSV Next.js kind: osv-batch confidence: official advisory_mode: core ecosystem_sources: [] research_sources: [] package_names: - ecosystem: npm name: next cpe_keys: [] ghsa_keywords: [next.js, next] kev_keywords: [next] output_dir: 07-framework-security/frameworks/nextjs secure_code_topics: [authz-server-side-recheck, proxy-trust-boundary, token-cookie-storage] render_policy: core_always_markdown: true - system_id: vue display_name: Vue category: frameworks tier: history-full advisory_modes: [core] official_sources: - name: Vue Security kind: html-links url: https://github.com/vuejs/core/security confidence: official advisory_mode: core keywords: [vue] max_items: 50 - name: GHSA Vue kind: ghsa-global ecosystem: npm name: GitHub Global Advisories confidence: official advisory_mode: core status: retired retired_reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; Vue Security and OSV Vue remain active replacements. replacement_sources: [Vue Security, OSV Vue] - name: OSV Vue kind: osv-batch confidence: official advisory_mode: core ecosystem_sources: [] research_sources: [] package_names: - ecosystem: npm name: vue - ecosystem: npm name: "@vue/compiler-sfc" cpe_keys: [] ghsa_keywords: [vue, vue compiler] kev_keywords: [vue] output_dir: 07-framework-security/frameworks/vue secure_code_topics: [xss-output-encoding, template-injection-guard, csp-trusted-types] render_policy: core_always_markdown: true - system_id: nuxt display_name: Nuxt category: frameworks tier: history-full advisory_modes: [core] official_sources: - name: Nuxt Security kind: html-links url: https://github.com/nuxt/nuxt/security/advisories confidence: official advisory_mode: core keywords: [nuxt] max_items: 50 - name: GHSA Nuxt kind: ghsa-global ecosystem: npm name: GitHub Global Advisories confidence: official advisory_mode: core status: retired retired_reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; Nuxt Security and OSV Nuxt remain active replacements. replacement_sources: [Nuxt Security, OSV Nuxt] - name: OSV Nuxt kind: osv-batch confidence: official advisory_mode: core ecosystem_sources: [] research_sources: [] package_names: - ecosystem: npm name: nuxt cpe_keys: [] ghsa_keywords: [nuxt] kev_keywords: [nuxt] output_dir: 07-framework-security/frameworks/nuxt secure_code_topics: [authz-server-side-recheck, proxy-trust-boundary, token-cookie-storage] render_policy: core_always_markdown: true - system_id: vite display_name: Vite category: frameworks tier: history-full advisory_modes: [core, plugin] official_sources: - name: Vite Security kind: html-links url: https://github.com/vitejs/vite/security/advisories confidence: official advisory_mode: core keywords: [vite] max_items: 50 - name: GHSA Vite kind: ghsa-global ecosystem: npm name: GitHub Global Advisories confidence: official advisory_mode: core status: retired retired_reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; Vite Security and OSV Vite remain active replacements. replacement_sources: [Vite Security, OSV Vite] - name: OSV Vite kind: osv-batch confidence: official advisory_mode: core ecosystem_sources: [] research_sources: [] package_names: - ecosystem: npm name: vite cpe_keys: [] ghsa_keywords: [vite] kev_keywords: [vite] output_dir: 07-framework-security/frameworks/vite secure_code_topics: [dependency-upgrade-policy, file-upload-validation, proxy-trust-boundary] render_policy: core_always_markdown: true - system_id: angular display_name: Angular category: frameworks tier: rolling-24m advisory_modes: [core] official_sources: - name: GHSA Angular kind: ghsa-global ecosystem: npm name: GitHub Global Advisories confidence: official advisory_mode: core status: retired retired_reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; OSV Angular remains the active replacement source. replacement_sources: [OSV Angular] - name: OSV Angular kind: osv-batch confidence: official advisory_mode: core ecosystem_sources: [] research_sources: [] package_names: - ecosystem: npm name: "@angular/core" - ecosystem: npm name: "@angular/compiler" cpe_keys: [] ghsa_keywords: [angular] kev_keywords: [angular] output_dir: 07-framework-security/frameworks/angular secure_code_topics: [xss-output-encoding, template-injection-guard, csp-trusted-types] render_policy: core_always_markdown: true - system_id: sveltekit display_name: SvelteKit category: frameworks tier: rolling-24m advisory_modes: [core] official_sources: - name: GHSA SvelteKit kind: ghsa-global ecosystem: npm name: GitHub Global Advisories confidence: official advisory_mode: core status: retired retired_reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; OSV SvelteKit remains the active replacement source. replacement_sources: [OSV SvelteKit] - name: OSV SvelteKit kind: osv-batch confidence: official advisory_mode: core ecosystem_sources: [] research_sources: [] package_names: - ecosystem: npm name: "@sveltejs/kit" cpe_keys: [] ghsa_keywords: [sveltekit, svelte] kev_keywords: [sveltekit] output_dir: 07-framework-security/frameworks/sveltekit secure_code_topics: [authz-server-side-recheck, token-cookie-storage] render_policy: core_always_markdown: true - system_id: astro display_name: Astro category: frameworks tier: rolling-24m advisory_modes: [core] official_sources: - name: GHSA Astro kind: ghsa-global ecosystem: npm name: GitHub Global Advisories confidence: official advisory_mode: core status: retired retired_reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; OSV Astro remains the active replacement source. replacement_sources: [OSV Astro] - name: OSV Astro kind: osv-batch confidence: official advisory_mode: core ecosystem_sources: [] research_sources: [] package_names: - ecosystem: npm name: astro cpe_keys: [] ghsa_keywords: [astro] kev_keywords: [astro] output_dir: 07-framework-security/frameworks/astro secure_code_topics: [authz-server-side-recheck, csp-trusted-types] render_policy: core_always_markdown: true - system_id: express display_name: Express category: frameworks tier: rolling-24m advisory_modes: [core] official_sources: - name: GHSA Express kind: ghsa-global ecosystem: npm name: GitHub Global Advisories confidence: official advisory_mode: core status: retired retired_reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; OSV Express remains the active replacement source. replacement_sources: [OSV Express] - name: OSV Express kind: osv-batch confidence: official advisory_mode: core ecosystem_sources: [] research_sources: [] package_names: - ecosystem: npm name: express cpe_keys: [] ghsa_keywords: [express] kev_keywords: [express] output_dir: 07-framework-security/frameworks/express secure_code_topics: [xss-output-encoding, ssrf-url-validation, proxy-trust-boundary] render_policy: core_always_markdown: true - system_id: nestjs display_name: NestJS category: frameworks tier: rolling-24m advisory_modes: [core] official_sources: - name: GHSA NestJS kind: ghsa-global ecosystem: npm name: GitHub Global Advisories confidence: official advisory_mode: core status: retired retired_reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; OSV NestJS remains the active replacement source. replacement_sources: [OSV NestJS] - name: OSV NestJS kind: osv-batch confidence: official advisory_mode: core ecosystem_sources: [] research_sources: [] package_names: - ecosystem: npm name: "@nestjs/core" cpe_keys: [] ghsa_keywords: [nestjs] kev_keywords: [nestjs] output_dir: 07-framework-security/frameworks/nestjs secure_code_topics: [authz-server-side-recheck, token-cookie-storage, ssrf-url-validation] render_policy: core_always_markdown: true - system_id: koa display_name: Koa category: frameworks tier: rolling-24m advisory_modes: [core] official_sources: - name: GHSA Koa kind: ghsa-global ecosystem: npm name: GitHub Global Advisories confidence: official advisory_mode: core status: retired retired_reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; OSV Koa remains the active replacement source. replacement_sources: [OSV Koa] - name: OSV Koa kind: osv-batch confidence: official advisory_mode: core ecosystem_sources: [] research_sources: [] package_names: - ecosystem: npm name: koa cpe_keys: [] ghsa_keywords: [koa] kev_keywords: [koa] output_dir: 07-framework-security/frameworks/koa secure_code_topics: [proxy-trust-boundary, ssrf-url-validation] render_policy: core_always_markdown: true - system_id: fastify display_name: Fastify category: frameworks tier: rolling-24m advisory_modes: [core] official_sources: - name: GHSA Fastify kind: ghsa-global ecosystem: npm name: GitHub Global Advisories confidence: official advisory_mode: core status: retired retired_reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; OSV Fastify remains the active replacement source. replacement_sources: [OSV Fastify] - name: OSV Fastify kind: osv-batch confidence: official advisory_mode: core ecosystem_sources: [] research_sources: [] package_names: - ecosystem: npm name: fastify cpe_keys: [] ghsa_keywords: [fastify] kev_keywords: [fastify] output_dir: 07-framework-security/frameworks/fastify secure_code_topics: [proxy-trust-boundary, ssrf-url-validation, xss-output-encoding] render_policy: core_always_markdown: true - system_id: hapi display_name: Hapi category: frameworks tier: rolling-24m advisory_modes: [core] official_sources: - name: GHSA Hapi kind: ghsa-global ecosystem: npm name: GitHub Global Advisories confidence: official advisory_mode: core status: retired retired_reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; OSV Hapi remains the active replacement source. replacement_sources: [OSV Hapi] - name: OSV Hapi kind: osv-batch confidence: official advisory_mode: core ecosystem_sources: [] research_sources: [] package_names: - ecosystem: npm name: "@hapi/hapi" cpe_keys: [] ghsa_keywords: [hapi] kev_keywords: [hapi] output_dir: 07-framework-security/frameworks/hapi secure_code_topics: [proxy-trust-boundary, token-cookie-storage] render_policy: core_always_markdown: true - system_id: nodejs display_name: Node.js category: frameworks tier: history-full advisory_modes: [core] official_sources: - name: Node.js Security Releases kind: html-links url: https://nodejs.org/en/blog/vulnerability confidence: official advisory_mode: core keywords: [node.js, security] max_items: 60 - name: CISA KEV Node.js kind: kev-json url: https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities.json confidence: official advisory_mode: core keywords: [node.js, nodejs] ecosystem_sources: [] research_sources: [] package_names: [] cpe_keys: ["nodejs:node.js"] ghsa_keywords: [nodejs, node.js] kev_keywords: [nodejs, node.js] output_dir: 07-framework-security/frameworks/nodejs secure_code_topics: [ssrf-url-validation, request-smuggling-boundary, dependency-upgrade-policy] render_policy: core_always_markdown: true - system_id: undici display_name: Undici category: frameworks tier: rolling-24m advisory_modes: [core] official_sources: - name: GHSA Undici kind: ghsa-global ecosystem: npm name: GitHub Global Advisories confidence: official advisory_mode: core status: retired retired_reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; OSV Undici remains the active replacement source. replacement_sources: [OSV Undici] - name: OSV Undici kind: osv-batch confidence: official advisory_mode: core ecosystem_sources: [] research_sources: [] package_names: - ecosystem: npm name: undici cpe_keys: [] ghsa_keywords: [undici] kev_keywords: [undici] output_dir: 07-framework-security/frameworks/undici secure_code_topics: [ssrf-url-validation, proxy-trust-boundary] render_policy: core_always_markdown: true - system_id: webpack display_name: webpack category: frameworks tier: rolling-24m advisory_modes: [core, plugin] official_sources: - name: GHSA webpack kind: ghsa-global ecosystem: npm name: GitHub Global Advisories confidence: official advisory_mode: core status: retired retired_reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; OSV webpack remains the active replacement source. replacement_sources: [OSV webpack] - name: OSV webpack kind: osv-batch confidence: official advisory_mode: core ecosystem_sources: [] research_sources: [] package_names: - ecosystem: npm name: webpack cpe_keys: [] ghsa_keywords: [webpack] kev_keywords: [webpack] output_dir: 07-framework-security/frameworks/webpack secure_code_topics: [dependency-upgrade-policy, file-upload-validation] render_policy: core_always_markdown: true - system_id: esbuild display_name: esbuild category: frameworks tier: rolling-24m advisory_modes: [core] official_sources: - name: GHSA esbuild kind: ghsa-global ecosystem: npm name: GitHub Global Advisories confidence: official advisory_mode: core status: retired retired_reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; OSV esbuild remains the active replacement source. replacement_sources: [OSV esbuild] - name: OSV esbuild kind: osv-batch confidence: official advisory_mode: core ecosystem_sources: [] research_sources: [] package_names: - ecosystem: npm name: esbuild cpe_keys: [] ghsa_keywords: [esbuild] kev_keywords: [esbuild] output_dir: 07-framework-security/frameworks/esbuild secure_code_topics: [dependency-upgrade-policy, file-upload-validation] render_policy: core_always_markdown: true - system_id: spring-framework display_name: Spring Framework category: frameworks tier: rolling-24m advisory_modes: [core] official_sources: - name: Spring Security Advisories kind: html-links url: https://spring.io/security confidence: official advisory_mode: core keywords: [spring framework, cve] max_items: 50 - name: GHSA Spring Framework kind: ghsa-global ecosystem: maven name: GitHub Global Advisories confidence: official advisory_mode: core status: retired retired_reason: Unauthenticated GHSA API requests are rate-limited in daily monitoring; Spring Security Advisories remains the active replacement source. replacement_sources: [Spring Security Advisories] ecosystem_sources: [] research_sources: [] package_names: - ecosystem: Maven name: org.springframework:spring-web - ecosystem: Maven name: org.springframework:spring-core cpe_keys: ["vmware:spring_framework"] ghsa_keywords: [spring framework] kev_keywords: [spring] output_dir: 07-framework-security/frameworks/spring-framework secure_code_topics: [authz-server-side-recheck, path-traversal-guard, deserialization-safety] render_policy: core_always_markdown: true - system_id: spring-security display_name: Spring Security category: frameworks tier: rolling-24m advisory_modes: [core] official_sources: - name: Spring Security Advisories kind: html-links url: https://spring.io/security confidence: official advisory_mode: core keywords: [spring security] max_items: 50 - name: GHSA Spring Security kind: ghsa-global ecosystem: maven name: GitHub Global Advisories confidence: official advisory_mode: core status: retired retired_reason: Unauthenticated GitHub advisory API is quota-limited; Spring official security page remains the active source. replacement_sources: [Spring Security Advisories] ecosystem_sources: [] research_sources: [] package_names: - ecosystem: Maven name: org.springframework.security:spring-security-web cpe_keys: [] ghsa_keywords: [spring security] kev_keywords: [spring security] output_dir: 07-framework-security/frameworks/spring-security secure_code_topics: [authz-server-side-recheck, token-cookie-storage, proxy-trust-boundary] render_policy: core_always_markdown: true - system_id: spring-boot display_name: Spring Boot category: frameworks tier: rolling-24m advisory_modes: [core] official_sources: - name: Spring Security Advisories kind: html-links url: https://spring.io/security confidence: official advisory_mode: core keywords: [spring boot] max_items: 50 - name: GHSA Spring Boot kind: ghsa-global ecosystem: maven name: GitHub Global Advisories confidence: official advisory_mode: core status: retired retired_reason: Unauthenticated GitHub advisory API is quota-limited; Spring official security page remains the active source. replacement_sources: [Spring Security Advisories] ecosystem_sources: [] research_sources: [] package_names: - ecosystem: Maven name: org.springframework.boot:spring-boot cpe_keys: [] ghsa_keywords: [spring boot] kev_keywords: [spring boot] output_dir: 07-framework-security/frameworks/spring-boot secure_code_topics: [proxy-trust-boundary, authz-server-side-recheck] render_policy: core_always_markdown: true - system_id: laravel display_name: Laravel category: frameworks tier: rolling-24m advisory_modes: [core] official_sources: - name: GHSA Laravel kind: ghsa-global ecosystem: composer name: GitHub Global Advisories confidence: official advisory_mode: core status: retired retired_reason: Unauthenticated GitHub advisory API is quota-limited; OSV Laravel remains the active machine-readable source. replacement_sources: [OSV Laravel] - name: OSV Laravel kind: osv-batch confidence: official advisory_mode: core ecosystem_sources: [] research_sources: [] package_names: - ecosystem: Packagist name: laravel/framework cpe_keys: [] ghsa_keywords: [laravel] kev_keywords: [laravel] output_dir: 07-framework-security/frameworks/laravel secure_code_topics: [xss-output-encoding, authz-server-side-recheck, file-upload-validation] render_policy: core_always_markdown: true - system_id: symfony display_name: Symfony category: frameworks tier: rolling-24m advisory_modes: [core] official_sources: - name: GHSA Symfony kind: ghsa-global ecosystem: composer name: GitHub Global Advisories confidence: official advisory_mode: core status: retired retired_reason: Unauthenticated GitHub advisory API is quota-limited; OSV Symfony remains the active machine-readable source. replacement_sources: [OSV Symfony] - name: OSV Symfony kind: osv-batch confidence: official advisory_mode: core ecosystem_sources: [] research_sources: [] package_names: - ecosystem: Packagist name: symfony/symfony - ecosystem: Packagist name: symfony/http-kernel cpe_keys: [] ghsa_keywords: [symfony] kev_keywords: [symfony] output_dir: 07-framework-security/frameworks/symfony secure_code_topics: [xss-output-encoding, authz-server-side-recheck, path-traversal-guard] render_policy: core_always_markdown: true - system_id: django display_name: Django category: frameworks tier: rolling-24m advisory_modes: [core] official_sources: - name: Django Security RSS kind: rss-feed url: https://www.djangoproject.com/weblog/feeds/tags/security/ confidence: official advisory_mode: core keywords: [django] max_items: 60 status: retired retired_reason: Official security tag feed became unstable; use official weblog index and release archive instead. replacement_sources: [Django Security Weblog, Django Security Releases Archive] - name: Django Security Weblog kind: vendor-index url: https://www.djangoproject.com/weblog/ confidence: official advisory_mode: core keywords: [django, security, release] max_items: 60 parser_hints: keywords: [django, security, release] include_url_patterns: [/weblog/] - name: Django Security Releases Archive kind: vendor-index url: https://docs.djangoproject.com/en/dev/releases/security/ confidence: official advisory_mode: core keywords: [django, security] max_items: 40 parser_hints: keywords: [django, security] include_url_patterns: [/releases/security/] - name: OSV Django kind: osv-batch confidence: official advisory_mode: core ecosystem_sources: [] research_sources: [] package_names: - ecosystem: PyPI name: django cpe_keys: ["djangoproject:django"] ghsa_keywords: [django] kev_keywords: [django] output_dir: 07-framework-security/frameworks/django secure_code_topics: [xss-output-encoding, path-traversal-guard, file-upload-validation] render_policy: core_always_markdown: true - system_id: flask display_name: Flask category: frameworks tier: rolling-24m advisory_modes: [core] official_sources: - name: OSV Flask kind: osv-batch confidence: official advisory_mode: core - name: GHSA Flask kind: ghsa-global ecosystem: pip name: GitHub Global Advisories confidence: official advisory_mode: core status: retired retired_reason: Unauthenticated GitHub advisory API is quota-limited; OSV Flask remains the active machine-readable source. replacement_sources: [OSV Flask] ecosystem_sources: [] research_sources: [] package_names: - ecosystem: PyPI name: flask cpe_keys: [] ghsa_keywords: [flask] kev_keywords: [flask] output_dir: 07-framework-security/frameworks/flask secure_code_topics: [xss-output-encoding, ssrf-url-validation, token-cookie-storage] render_policy: core_always_markdown: true - system_id: werkzeug display_name: Werkzeug category: frameworks tier: rolling-24m advisory_modes: [core] official_sources: - name: OSV Werkzeug kind: osv-batch confidence: official advisory_mode: core - name: GHSA Werkzeug kind: ghsa-global ecosystem: pip name: GitHub Global Advisories confidence: official advisory_mode: core status: retired retired_reason: Unauthenticated GitHub advisory API is quota-limited; OSV Werkzeug remains the active machine-readable source. replacement_sources: [OSV Werkzeug] ecosystem_sources: [] research_sources: [] package_names: - ecosystem: PyPI name: werkzeug cpe_keys: [] ghsa_keywords: [werkzeug] kev_keywords: [werkzeug] output_dir: 07-framework-security/frameworks/werkzeug secure_code_topics: [proxy-trust-boundary, request-smuggling-boundary] render_policy: core_always_markdown: true - system_id: rails display_name: Ruby on Rails category: frameworks tier: rolling-24m advisory_modes: [core] official_sources: - name: GHSA Rails kind: ghsa-global ecosystem: rubygems name: GitHub Global Advisories confidence: official advisory_mode: core status: retired retired_reason: Unauthenticated GitHub advisory API is quota-limited; OSV Rails remains the active machine-readable source. replacement_sources: [OSV Rails] - name: OSV Rails kind: osv-batch confidence: official advisory_mode: core ecosystem_sources: [] research_sources: [] package_names: - ecosystem: RubyGems name: rails cpe_keys: [] ghsa_keywords: [rails] kev_keywords: [rails] output_dir: 07-framework-security/frameworks/rails secure_code_topics: [xss-output-encoding, file-upload-validation, authz-server-side-recheck] render_policy: core_always_markdown: true - system_id: aspnet-core display_name: ASP.NET Core category: frameworks tier: rolling-24m advisory_modes: [core] official_sources: - name: NVD ASP.NET Core kind: nvd-search keyword: ASP.NET Core confidence: official advisory_mode: core results_per_page: 40 ecosystem_sources: [] research_sources: [] package_names: [] cpe_keys: ["microsoft:asp.net_core"] ghsa_keywords: [asp.net core] kev_keywords: [asp.net core] output_dir: 07-framework-security/frameworks/aspnet-core secure_code_topics: [authz-server-side-recheck, xss-output-encoding, file-upload-validation] render_policy: core_always_markdown: true - system_id: gin display_name: Gin category: frameworks tier: rolling-24m advisory_modes: [core] official_sources: - name: OSV Gin kind: osv-batch confidence: official advisory_mode: core ecosystem_sources: [] research_sources: [] package_names: - ecosystem: Go name: github.com/gin-gonic/gin cpe_keys: [] ghsa_keywords: [gin] kev_keywords: [gin] output_dir: 07-framework-security/frameworks/gin secure_code_topics: [proxy-trust-boundary, xss-output-encoding] render_policy: core_always_markdown: true - system_id: echo display_name: Echo category: frameworks tier: rolling-24m advisory_modes: [core] official_sources: - name: OSV Echo kind: osv-batch confidence: official advisory_mode: core ecosystem_sources: [] research_sources: [] package_names: - ecosystem: Go name: github.com/labstack/echo/v4 cpe_keys: [] ghsa_keywords: [echo] kev_keywords: [echo] output_dir: 07-framework-security/frameworks/echo secure_code_topics: [proxy-trust-boundary, token-cookie-storage] render_policy: core_always_markdown: true - system_id: nginx display_name: Nginx category: servers tier: history-full advisory_modes: [server] official_sources: - name: NGINX Security Advisories kind: html-links url: https://nginx.org/en/security_advisories.html confidence: official advisory_mode: server keywords: [nginx, security] max_items: 60 - name: NVD NGINX kind: nvd-search keyword: NGINX confidence: official advisory_mode: server results_per_page: 50 - name: CISA KEV NGINX kind: kev-json url: https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities.json confidence: official advisory_mode: server keywords: [nginx] ecosystem_sources: [] research_sources: [] package_names: [] cpe_keys: ["f5:nginx", "nginx:nginx"] ghsa_keywords: [nginx] kev_keywords: [nginx] output_dir: 07-framework-security/servers/nginx secure_code_topics: [proxy-trust-boundary, request-smuggling-boundary, csp-trusted-types] render_policy: core_always_markdown: true - system_id: apache-httpd display_name: Apache HTTP Server category: servers tier: history-full advisory_modes: [server] official_sources: - name: Apache HTTPD Security kind: html-links url: https://httpd.apache.org/security/vulnerabilities_24.html confidence: official advisory_mode: server keywords: [apache, http server, cve] max_items: 80 - name: CISA KEV Apache HTTPD kind: kev-json url: https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities.json confidence: official advisory_mode: server keywords: [apache http server] - name: NVD Apache HTTP Server kind: nvd-search keyword: Apache HTTP Server confidence: official advisory_mode: server results_per_page: 50 ecosystem_sources: [] research_sources: [] package_names: [] cpe_keys: ["apache:http_server"] ghsa_keywords: [apache http server, httpd] kev_keywords: [apache http server, httpd] output_dir: 07-framework-security/servers/apache-httpd secure_code_topics: [request-smuggling-boundary, proxy-trust-boundary, path-traversal-guard] render_policy: core_always_markdown: true - system_id: apache-tomcat display_name: Apache Tomcat category: servers tier: history-full advisory_modes: [server] official_sources: - name: Apache Tomcat Security kind: html-links url: https://tomcat.apache.org/security-10.html confidence: official advisory_mode: server keywords: [tomcat, cve] max_items: 80 - name: CISA KEV Tomcat kind: kev-json url: https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities.json confidence: official advisory_mode: server keywords: [tomcat] - name: NVD Tomcat kind: nvd-search keyword: Apache Tomcat confidence: official advisory_mode: server results_per_page: 50 ecosystem_sources: [] research_sources: [] package_names: [] cpe_keys: ["apache:tomcat"] ghsa_keywords: [tomcat] kev_keywords: [tomcat] output_dir: 07-framework-security/servers/apache-tomcat secure_code_topics: [request-smuggling-boundary, authz-server-side-recheck, path-traversal-guard] render_policy: core_always_markdown: true - system_id: caddy display_name: Caddy category: servers tier: rolling-24m advisory_modes: [server] official_sources: - name: GitHub Caddy Advisories kind: html-links url: https://github.com/caddyserver/caddy/security/advisories confidence: official advisory_mode: server keywords: [caddy] max_items: 50 - name: OSV Caddy kind: osv-batch confidence: official advisory_mode: server ecosystem_sources: [] research_sources: [] package_names: - ecosystem: Go name: github.com/caddyserver/caddy/v2 cpe_keys: [] ghsa_keywords: [caddy] kev_keywords: [caddy] output_dir: 07-framework-security/servers/caddy secure_code_topics: [proxy-trust-boundary, request-smuggling-boundary] render_policy: core_always_markdown: true - system_id: traefik display_name: Traefik category: servers tier: rolling-24m advisory_modes: [server] official_sources: - name: GitHub Traefik Advisories kind: html-links url: https://github.com/traefik/traefik/security/advisories confidence: official advisory_mode: server keywords: [traefik] max_items: 50 - name: OSV Traefik kind: osv-batch confidence: official advisory_mode: server ecosystem_sources: [] research_sources: [] package_names: - ecosystem: Go name: github.com/traefik/traefik/v3 cpe_keys: [] ghsa_keywords: [traefik] kev_keywords: [traefik] output_dir: 07-framework-security/servers/traefik secure_code_topics: [proxy-trust-boundary, request-smuggling-boundary] render_policy: core_always_markdown: true - system_id: haproxy display_name: HAProxy category: servers tier: rolling-24m advisory_modes: [server] official_sources: - name: HAProxy Security Advisories kind: html-links url: https://www.haproxy.org/security/ confidence: official advisory_mode: server keywords: [haproxy, security] max_items: 50 status: retired retired_reason: Legacy haproxy.org security page no longer yields stable scrape results for monitoring. replacement_sources: [HAProxy Blog Feed] - name: HAProxy Blog Feed kind: rss-feed url: https://www.haproxy.com/feed/ confidence: official advisory_mode: server keywords: [haproxy, security, cve] max_items: 40 - name: NVD HAProxy kind: nvd-search keyword: HAProxy confidence: official advisory_mode: server results_per_page: 40 ecosystem_sources: [] research_sources: [] package_names: [] cpe_keys: ["haproxy:haproxy"] ghsa_keywords: [haproxy] kev_keywords: [haproxy] output_dir: 07-framework-security/servers/haproxy secure_code_topics: [proxy-trust-boundary, request-smuggling-boundary] render_policy: core_always_markdown: true - system_id: phpmyadmin display_name: phpMyAdmin category: platforms tier: rolling-24m advisory_modes: [core] official_sources: - name: phpMyAdmin Security Page kind: html-links url: https://www.phpmyadmin.net/security/ confidence: official advisory_mode: core keywords: [phpmyadmin] max_items: 50 - name: NVD phpMyAdmin kind: nvd-search keyword: phpMyAdmin confidence: official advisory_mode: core results_per_page: 40 ecosystem_sources: [] research_sources: [] package_names: - ecosystem: Packagist name: phpmyadmin/phpmyadmin cpe_keys: ["phpmyadmin:phpmyadmin"] ghsa_keywords: [phpmyadmin] kev_keywords: [phpmyadmin] output_dir: 07-framework-security/platforms/phpmyadmin secure_code_topics: [xss-output-encoding, authz-server-side-recheck, path-traversal-guard] render_policy: core_always_markdown: true - system_id: adminer display_name: Adminer category: platforms tier: rolling-24m advisory_modes: [core] official_sources: - name: NVD Adminer kind: nvd-search keyword: Adminer confidence: official advisory_mode: core results_per_page: 40 ecosystem_sources: [] research_sources: [] package_names: [] cpe_keys: ["adminer:adminer"] ghsa_keywords: [adminer] kev_keywords: [adminer] output_dir: 07-framework-security/platforms/adminer secure_code_topics: [xss-output-encoding, authz-server-side-recheck] render_policy: core_always_markdown: true - system_id: gitea display_name: Gitea category: platforms tier: rolling-24m advisory_modes: [core] official_sources: - name: GitHub Gitea Advisories kind: html-links url: https://github.com/go-gitea/gitea/security/advisories confidence: official advisory_mode: core keywords: [gitea] max_items: 50 - name: OSV Gitea kind: osv-batch confidence: official advisory_mode: core ecosystem_sources: [] research_sources: [] package_names: - ecosystem: Go name: code.gitea.io/gitea cpe_keys: [] ghsa_keywords: [gitea] kev_keywords: [gitea] output_dir: 07-framework-security/platforms/gitea secure_code_topics: [authz-server-side-recheck, token-cookie-storage, proxy-trust-boundary] render_policy: core_always_markdown: true - system_id: gitlab-ce display_name: GitLab CE category: platforms tier: rolling-24m advisory_modes: [core] official_sources: - name: GitLab Security Releases kind: html-links url: https://about.gitlab.com/releases/categories/releases/ confidence: official advisory_mode: core keywords: [security release, gitlab] max_items: 50 - name: NVD GitLab kind: nvd-search keyword: GitLab CE confidence: official advisory_mode: core results_per_page: 40 ecosystem_sources: - name: GitLab Advisory Database kind: html-links url: https://gitlab.com/gitlab-org/advisories-community confidence: ecosystem-authority advisory_mode: core keywords: [gitlab] max_items: 50 research_sources: [] package_names: [] cpe_keys: ["gitlab:gitlab"] ghsa_keywords: [gitlab] kev_keywords: [gitlab] output_dir: 07-framework-security/platforms/gitlab-ce secure_code_topics: [authz-server-side-recheck, token-cookie-storage, deserialization-safety] render_policy: core_always_markdown: true - system_id: jenkins display_name: Jenkins category: platforms tier: rolling-24m advisory_modes: [core, plugin] official_sources: - name: Jenkins Security Advisories kind: html-links url: https://www.jenkins.io/security/advisories/ confidence: official advisory_mode: core keywords: [jenkins] max_items: 60 - name: NVD Jenkins kind: nvd-search keyword: Jenkins confidence: official advisory_mode: core results_per_page: 40 ecosystem_sources: [] research_sources: [] package_names: [] cpe_keys: ["jenkins:jenkins"] ghsa_keywords: [jenkins] kev_keywords: [jenkins] output_dir: 07-framework-security/platforms/jenkins secure_code_topics: [plugin-extension-trust-policy, authz-server-side-recheck, deserialization-safety] render_policy: core_always_markdown: true extension_markdown_on_high_value: true - system_id: grafana display_name: Grafana category: platforms tier: rolling-24m advisory_modes: [core, plugin] official_sources: - name: Grafana Security Advisories kind: html-links url: https://grafana.com/security/security-advisories/ confidence: official advisory_mode: core keywords: [grafana] max_items: 60 - name: CISA KEV Grafana kind: kev-json url: https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities.json confidence: official advisory_mode: core keywords: [grafana] ecosystem_sources: [] research_sources: [] package_names: [] cpe_keys: ["grafana:grafana"] ghsa_keywords: [grafana] kev_keywords: [grafana] output_dir: 07-framework-security/platforms/grafana secure_code_topics: [authz-server-side-recheck, plugin-extension-trust-policy, xss-output-encoding] render_policy: core_always_markdown: true - system_id: kibana display_name: Kibana category: platforms tier: rolling-24m advisory_modes: [core, plugin] official_sources: - name: Elastic Security Announcements kind: html-links url: https://discuss.elastic.co/c/announcements/security-announcements/31 confidence: official advisory_mode: core keywords: [kibana, elastic, security] max_items: 60 - name: NVD Kibana kind: nvd-search keyword: Kibana confidence: official advisory_mode: core results_per_page: 40 ecosystem_sources: [] research_sources: [] package_names: [] cpe_keys: ["elastic:kibana"] ghsa_keywords: [kibana] kev_keywords: [kibana] output_dir: 07-framework-security/platforms/kibana secure_code_topics: [authz-server-side-recheck, xss-output-encoding, proxy-trust-boundary] render_policy: core_always_markdown: true - system_id: mattermost display_name: Mattermost category: platforms tier: rolling-24m advisory_modes: [core, plugin] official_sources: - name: Mattermost Security Updates kind: html-links url: https://mattermost.com/security-updates/ confidence: official advisory_mode: core keywords: [mattermost] max_items: 50 status: retired retired_reason: Mattermost security updates page returned repeated 403 responses from the collector path; NVD replacement remains active. replacement_sources: [NVD Mattermost] - name: NVD Mattermost kind: nvd-search keyword: Mattermost confidence: official advisory_mode: core results_per_page: 40 ecosystem_sources: [] research_sources: [] package_names: [] cpe_keys: ["mattermost:mattermost"] ghsa_keywords: [mattermost] kev_keywords: [mattermost] output_dir: 07-framework-security/platforms/mattermost secure_code_topics: [authz-server-side-recheck, xss-output-encoding, token-cookie-storage] render_policy: core_always_markdown: true - system_id: redmine display_name: Redmine category: platforms tier: rolling-24m advisory_modes: [core, plugin] official_sources: - name: Redmine Security Advisories kind: html-links url: https://www.redmine.org/projects/redmine/wiki/Security_Advisories confidence: official advisory_mode: core keywords: [redmine] max_items: 50 - name: NVD Redmine kind: nvd-search keyword: Redmine confidence: official advisory_mode: core results_per_page: 40 ecosystem_sources: [] research_sources: [] package_names: - ecosystem: RubyGems name: redmine cpe_keys: ["redmine:redmine"] ghsa_keywords: [redmine] kev_keywords: [redmine] output_dir: 07-framework-security/platforms/redmine secure_code_topics: [authz-server-side-recheck, xss-output-encoding, plugin-extension-trust-policy] render_policy: core_always_markdown: true