787 行
33 KiB
HTML
787 行
33 KiB
HTML
<!doctype html>
|
|
<html lang="zh-CN">
|
|
<head>
|
|
<meta charset="utf-8">
|
|
<meta name="viewport" content="width=device-width, initial-scale=1">
|
|
<title>Retired Sources & Replacement Map</title>
|
|
<style>
|
|
:root {
|
|
--bg: #08111f;
|
|
--panel: rgba(9, 18, 32, 0.9);
|
|
--border: rgba(137, 171, 214, 0.2);
|
|
--text: #f7fafc;
|
|
--muted: #9fb3ca;
|
|
--accent: #5eead4;
|
|
}
|
|
* { box-sizing: border-box; }
|
|
body {
|
|
margin: 0;
|
|
min-height: 100vh;
|
|
font-family: "IBM Plex Sans", "Segoe UI", sans-serif;
|
|
color: var(--text);
|
|
background:
|
|
radial-gradient(circle at top left, rgba(94, 234, 212, 0.12), transparent 26%),
|
|
linear-gradient(160deg, #050c16 0%, #091526 50%, #10233d 100%);
|
|
}
|
|
main {
|
|
max-width: 1080px;
|
|
margin: 0 auto;
|
|
padding: 32px 20px 40px;
|
|
}
|
|
.panel {
|
|
background: var(--panel);
|
|
border: 1px solid var(--border);
|
|
border-radius: 20px;
|
|
padding: 24px;
|
|
box-shadow: 0 24px 80px rgba(1, 7, 20, 0.45);
|
|
}
|
|
.actions {
|
|
display: flex;
|
|
flex-wrap: wrap;
|
|
gap: 12px;
|
|
margin-bottom: 18px;
|
|
}
|
|
.chip {
|
|
display: inline-flex;
|
|
align-items: center;
|
|
gap: 8px;
|
|
border-radius: 999px;
|
|
border: 1px solid var(--border);
|
|
padding: 10px 14px;
|
|
color: var(--text);
|
|
background: rgba(255,255,255,0.05);
|
|
text-decoration: none;
|
|
}
|
|
.chip:hover { border-color: rgba(94, 234, 212, 0.42); }
|
|
h1 {
|
|
margin: 0 0 12px;
|
|
font-family: "IBM Plex Serif", Georgia, serif;
|
|
font-size: clamp(1.8rem, 4vw, 3rem);
|
|
line-height: 1.08;
|
|
}
|
|
.meta {
|
|
color: var(--muted);
|
|
margin-bottom: 18px;
|
|
}
|
|
pre {
|
|
margin: 0;
|
|
padding: 20px;
|
|
overflow: auto;
|
|
border-radius: 16px;
|
|
border: 1px solid rgba(137, 171, 214, 0.12);
|
|
background: rgba(2, 8, 22, 0.84);
|
|
color: #d6e5f5;
|
|
font-family: "IBM Plex Mono", "SFMono-Regular", monospace;
|
|
font-size: 0.92rem;
|
|
line-height: 1.6;
|
|
white-space: pre-wrap;
|
|
}
|
|
</style>
|
|
</head>
|
|
<body>
|
|
<main>
|
|
<div class="panel">
|
|
<div class="actions">
|
|
<a class="chip" href="/overview/index.html">返回工作台</a>
|
|
</div>
|
|
<h1>Retired Sources & Replacement Map</h1>
|
|
<div class="meta">工作台内置镜像页:退役源、退役原因和 replacement_sources 真值。</div>
|
|
<pre>[
|
|
{
|
|
"system_id": "adobe-commerce",
|
|
"display_name": "Adobe Commerce",
|
|
"source_name": "Adobe Security Bulletins",
|
|
"bucket": "official_sources",
|
|
"kind": "html-links",
|
|
"retired_reason": "Original bulletin index probe was unstable under the old transport path; vendor index replacement uses explicit request policy and parser hints.",
|
|
"replacement_sources": [
|
|
"Adobe Magento Security Index",
|
|
"NVD Adobe Commerce",
|
|
"GHSA Adobe Commerce"
|
|
],
|
|
"url": "https://helpx.adobe.com/security/products/magento.html"
|
|
},
|
|
{
|
|
"system_id": "adobe-commerce",
|
|
"display_name": "Adobe Commerce",
|
|
"source_name": "GHSA Adobe Commerce",
|
|
"bucket": "ecosystem_sources",
|
|
"kind": "ghsa-global",
|
|
"retired_reason": "Unauthenticated GHSA API requests are rate-limited in daily monitoring; Adobe index and NVD remain active replacements.",
|
|
"replacement_sources": [
|
|
"Adobe Magento Security Index",
|
|
"NVD Adobe Commerce"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "adobe-commerce",
|
|
"display_name": "Adobe Commerce",
|
|
"source_name": "Sansec Research",
|
|
"bucket": "ecosystem_sources",
|
|
"kind": "vendor-index",
|
|
"retired_reason": "Research index is too slow for daily active monitoring; GHSA Adobe Commerce provides a stable machine-readable replacement.",
|
|
"replacement_sources": [
|
|
"GHSA Adobe Commerce",
|
|
"Adobe Magento Security Index"
|
|
],
|
|
"url": "https://sansec.io/research"
|
|
},
|
|
{
|
|
"system_id": "angular",
|
|
"display_name": "Angular",
|
|
"source_name": "GitHub Global Advisories",
|
|
"bucket": "official_sources",
|
|
"kind": "ghsa-global",
|
|
"retired_reason": "Unauthenticated GHSA API requests are rate-limited in daily monitoring; OSV Angular remains the active replacement source.",
|
|
"replacement_sources": [
|
|
"OSV Angular"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "astro",
|
|
"display_name": "Astro",
|
|
"source_name": "GitHub Global Advisories",
|
|
"bucket": "official_sources",
|
|
"kind": "ghsa-global",
|
|
"retired_reason": "Unauthenticated GHSA API requests are rate-limited in daily monitoring; OSV Astro remains the active replacement source.",
|
|
"replacement_sources": [
|
|
"OSV Astro"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "discourse",
|
|
"display_name": "Discourse",
|
|
"source_name": "Discourse Meta Security",
|
|
"bucket": "official_sources",
|
|
"kind": "html-links",
|
|
"retired_reason": "Meta security category HTML changed and no longer provides stable scrape semantics for health checks.",
|
|
"replacement_sources": [
|
|
"Discourse Release Notes RSS",
|
|
"GitHub Discourse Advisories"
|
|
],
|
|
"url": "https://meta.discourse.org/c/bug/security/40"
|
|
},
|
|
{
|
|
"system_id": "discourse",
|
|
"display_name": "Discourse",
|
|
"source_name": "GitHub Discourse Advisories",
|
|
"bucket": "official_sources",
|
|
"kind": "ghsa-global",
|
|
"retired_reason": "Unauthenticated GHSA API requests are rate-limited in daily monitoring; Discourse release feed remains the active official source.",
|
|
"replacement_sources": [
|
|
"Discourse Release Notes RSS",
|
|
"Discourse Security RSS"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "django",
|
|
"display_name": "Django",
|
|
"source_name": "Django Security RSS",
|
|
"bucket": "official_sources",
|
|
"kind": "rss-feed",
|
|
"retired_reason": "Official security tag feed became unstable; use official weblog index and release archive instead.",
|
|
"replacement_sources": [
|
|
"Django Security Weblog",
|
|
"Django Security Releases Archive"
|
|
],
|
|
"url": "https://www.djangoproject.com/weblog/feeds/tags/security/"
|
|
},
|
|
{
|
|
"system_id": "drupal",
|
|
"display_name": "Drupal",
|
|
"source_name": "NVD Drupal",
|
|
"bucket": "official_sources",
|
|
"kind": "nvd-search",
|
|
"retired_reason": "OSV Drupal + Drupal official RSS now cover machine-readable collection with lower cold-start latency than NVD public search.",
|
|
"replacement_sources": [
|
|
"Drupal Security Advisories RSS",
|
|
"OSV Drupal"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "esbuild",
|
|
"display_name": "esbuild",
|
|
"source_name": "GitHub Global Advisories",
|
|
"bucket": "official_sources",
|
|
"kind": "ghsa-global",
|
|
"retired_reason": "Unauthenticated GHSA API requests are rate-limited in daily monitoring; OSV esbuild remains the active replacement source.",
|
|
"replacement_sources": [
|
|
"OSV esbuild"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "esbuild",
|
|
"display_name": "esbuild",
|
|
"source_name": "NVD esbuild",
|
|
"bucket": "ecosystem_sources",
|
|
"kind": "nvd-search",
|
|
"retired_reason": "OSV esbuild replaces NVD public search for lower-latency machine-readable collection.",
|
|
"replacement_sources": [
|
|
"OSV esbuild"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "express",
|
|
"display_name": "Express",
|
|
"source_name": "GitHub Global Advisories",
|
|
"bucket": "official_sources",
|
|
"kind": "ghsa-global",
|
|
"retired_reason": "Unauthenticated GHSA API requests are rate-limited in daily monitoring; OSV Express remains the active replacement source.",
|
|
"replacement_sources": [
|
|
"OSV Express"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "express",
|
|
"display_name": "Express",
|
|
"source_name": "NVD Express.js",
|
|
"bucket": "ecosystem_sources",
|
|
"kind": "nvd-search",
|
|
"retired_reason": "OSV Express replaces NVD public search for lower-latency machine-readable collection.",
|
|
"replacement_sources": [
|
|
"OSV Express"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "fastify",
|
|
"display_name": "Fastify",
|
|
"source_name": "GitHub Global Advisories",
|
|
"bucket": "official_sources",
|
|
"kind": "ghsa-global",
|
|
"retired_reason": "Unauthenticated GHSA API requests are rate-limited in daily monitoring; OSV Fastify remains the active replacement source.",
|
|
"replacement_sources": [
|
|
"OSV Fastify"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "flask",
|
|
"display_name": "Flask",
|
|
"source_name": "GitHub Global Advisories",
|
|
"bucket": "official_sources",
|
|
"kind": "ghsa-global",
|
|
"retired_reason": "Unauthenticated GitHub advisory API is quota-limited; OSV Flask remains the active machine-readable source.",
|
|
"replacement_sources": [
|
|
"OSV Flask"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "ghost",
|
|
"display_name": "Ghost",
|
|
"source_name": "NVD Ghost",
|
|
"bucket": "official_sources",
|
|
"kind": "nvd-search",
|
|
"retired_reason": "OSV Ghost replaces NVD for machine-readable collection and keeps npm package alignment.",
|
|
"replacement_sources": [
|
|
"Ghost GitHub Advisories",
|
|
"OSV Ghost"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "hapi",
|
|
"display_name": "Hapi",
|
|
"source_name": "GitHub Global Advisories",
|
|
"bucket": "official_sources",
|
|
"kind": "ghsa-global",
|
|
"retired_reason": "Unauthenticated GHSA API requests are rate-limited in daily monitoring; OSV Hapi remains the active replacement source.",
|
|
"replacement_sources": [
|
|
"OSV Hapi"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "haproxy",
|
|
"display_name": "HAProxy",
|
|
"source_name": "HAProxy Security Advisories",
|
|
"bucket": "official_sources",
|
|
"kind": "html-links",
|
|
"retired_reason": "Legacy haproxy.org security page no longer yields stable scrape results for monitoring.",
|
|
"replacement_sources": [
|
|
"HAProxy Blog Feed"
|
|
],
|
|
"url": "https://www.haproxy.org/security/"
|
|
},
|
|
{
|
|
"system_id": "joomla",
|
|
"display_name": "Joomla",
|
|
"source_name": "NVD Joomla",
|
|
"bucket": "official_sources",
|
|
"kind": "nvd-search",
|
|
"retired_reason": "OSV Joomla CMS replaces NVD for machine-readable collection without public NVD throttling.",
|
|
"replacement_sources": [
|
|
"Joomla Security Centre",
|
|
"OSV Joomla"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "koa",
|
|
"display_name": "Koa",
|
|
"source_name": "GitHub Global Advisories",
|
|
"bucket": "official_sources",
|
|
"kind": "ghsa-global",
|
|
"retired_reason": "Unauthenticated GHSA API requests are rate-limited in daily monitoring; OSV Koa remains the active replacement source.",
|
|
"replacement_sources": [
|
|
"OSV Koa"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "laravel",
|
|
"display_name": "Laravel",
|
|
"source_name": "GitHub Global Advisories",
|
|
"bucket": "official_sources",
|
|
"kind": "ghsa-global",
|
|
"retired_reason": "Unauthenticated GitHub advisory API is quota-limited; OSV Laravel remains the active machine-readable source.",
|
|
"replacement_sources": [
|
|
"OSV Laravel"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "mattermost",
|
|
"display_name": "Mattermost",
|
|
"source_name": "Mattermost Security Updates",
|
|
"bucket": "official_sources",
|
|
"kind": "html-links",
|
|
"retired_reason": "Mattermost security updates page returned repeated 403 responses from the collector path; NVD replacement remains active.",
|
|
"replacement_sources": [
|
|
"NVD Mattermost"
|
|
],
|
|
"url": "https://mattermost.com/security-updates/"
|
|
},
|
|
{
|
|
"system_id": "mattermost",
|
|
"display_name": "Mattermost",
|
|
"source_name": "NVD Mattermost",
|
|
"bucket": "official_sources",
|
|
"kind": "nvd-search",
|
|
"retired_reason": "Mattermost official JSON feed plus OSV Mattermost replace NVD for lower-latency machine-readable collection.",
|
|
"replacement_sources": [
|
|
"Mattermost Security Updates JSON",
|
|
"OSV Mattermost"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "mediawiki",
|
|
"display_name": "MediaWiki",
|
|
"source_name": "MediaWiki Security Releases",
|
|
"bucket": "official_sources",
|
|
"kind": "html-links",
|
|
"retired_reason": "MediaWiki security page is no longer reachable reliably from the collector path; NVD replacement remains active.",
|
|
"replacement_sources": [
|
|
"MediaWiki Announce RSS",
|
|
"NVD MediaWiki"
|
|
],
|
|
"url": "https://www.mediawiki.org/wiki/Security"
|
|
},
|
|
{
|
|
"system_id": "mediawiki",
|
|
"display_name": "MediaWiki",
|
|
"source_name": "NVD MediaWiki",
|
|
"bucket": "official_sources",
|
|
"kind": "nvd-search",
|
|
"retired_reason": "MediaWiki announce RSS plus OSV MediaWiki now replace NVD for lower-latency machine-readable collection.",
|
|
"replacement_sources": [
|
|
"MediaWiki Announce RSS",
|
|
"OSV MediaWiki"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "moodle",
|
|
"display_name": "Moodle",
|
|
"source_name": "Moodle Security News",
|
|
"bucket": "official_sources",
|
|
"kind": "html-links",
|
|
"retired_reason": "Security page is reachable with a browser-style UA, but the current markup only exposes generic \"Discuss this topic\" anchors to the collector; NVD Moodle remains the active replacement source until a richer parser is added.",
|
|
"replacement_sources": [
|
|
"NVD Moodle"
|
|
],
|
|
"url": "https://moodle.org/security/"
|
|
},
|
|
{
|
|
"system_id": "moodle",
|
|
"display_name": "Moodle",
|
|
"source_name": "NVD Moodle",
|
|
"bucket": "official_sources",
|
|
"kind": "nvd-search",
|
|
"retired_reason": "OSV Moodle replaces NVD for machine-readable collection while official Moodle sources remain for cross-checking.",
|
|
"replacement_sources": [
|
|
"OSV Moodle"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "nestjs",
|
|
"display_name": "NestJS",
|
|
"source_name": "GitHub Global Advisories",
|
|
"bucket": "official_sources",
|
|
"kind": "ghsa-global",
|
|
"retired_reason": "Unauthenticated GHSA API requests are rate-limited in daily monitoring; OSV NestJS remains the active replacement source.",
|
|
"replacement_sources": [
|
|
"OSV NestJS"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "nestjs",
|
|
"display_name": "NestJS",
|
|
"source_name": "NVD NestJS",
|
|
"bucket": "ecosystem_sources",
|
|
"kind": "nvd-search",
|
|
"retired_reason": "OSV NestJS replaces NVD public search for lower-latency machine-readable collection.",
|
|
"replacement_sources": [
|
|
"OSV NestJS"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "nextjs",
|
|
"display_name": "Next.js",
|
|
"source_name": "GitHub Global Advisories",
|
|
"bucket": "official_sources",
|
|
"kind": "ghsa-global",
|
|
"retired_reason": "Unauthenticated GHSA API requests are rate-limited in daily monitoring; GitHub Next.js Advisories and OSV Next.js remain active replacements.",
|
|
"replacement_sources": [
|
|
"GitHub Next.js Advisories",
|
|
"OSV Next.js"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "nuxt",
|
|
"display_name": "Nuxt",
|
|
"source_name": "GitHub Global Advisories",
|
|
"bucket": "official_sources",
|
|
"kind": "ghsa-global",
|
|
"retired_reason": "Unauthenticated GHSA API requests are rate-limited in daily monitoring; Nuxt Security and OSV Nuxt remain active replacements.",
|
|
"replacement_sources": [
|
|
"Nuxt Security",
|
|
"OSV Nuxt"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "opencart",
|
|
"display_name": "OpenCart",
|
|
"source_name": "NVD OpenCart",
|
|
"bucket": "official_sources",
|
|
"kind": "nvd-search",
|
|
"retired_reason": "OSV OpenCart replaces NVD for machine-readable collection while official release source remains active.",
|
|
"replacement_sources": [
|
|
"OpenCart Releases",
|
|
"OSV OpenCart"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "openmage",
|
|
"display_name": "OpenMage / Mage-OS",
|
|
"source_name": "NVD OpenMage",
|
|
"bucket": "official_sources",
|
|
"kind": "nvd-search",
|
|
"retired_reason": "OSV OpenMage replaces NVD for machine-readable composer-aligned collection.",
|
|
"replacement_sources": [
|
|
"OpenMage GitHub Advisories",
|
|
"OSV OpenMage"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "phpmyadmin",
|
|
"display_name": "phpMyAdmin",
|
|
"source_name": "NVD phpMyAdmin",
|
|
"bucket": "official_sources",
|
|
"kind": "nvd-search",
|
|
"retired_reason": "OSV phpMyAdmin replaces NVD for machine-readable collection while the official security page remains active.",
|
|
"replacement_sources": [
|
|
"phpMyAdmin Security Page",
|
|
"OSV phpMyAdmin"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "prestashop",
|
|
"display_name": "PrestaShop",
|
|
"source_name": "NVD PrestaShop",
|
|
"bucket": "official_sources",
|
|
"kind": "nvd-search",
|
|
"retired_reason": "OSV PrestaShop replaces NVD for machine-readable collection while official and ecosystem advisories remain active.",
|
|
"replacement_sources": [
|
|
"PrestaShop Security Page",
|
|
"GitHub PrestaShop Advisories",
|
|
"OSV PrestaShop"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "rails",
|
|
"display_name": "Ruby on Rails",
|
|
"source_name": "GitHub Global Advisories",
|
|
"bucket": "official_sources",
|
|
"kind": "ghsa-global",
|
|
"retired_reason": "Unauthenticated GitHub advisory API is quota-limited; OSV Rails remains the active machine-readable source.",
|
|
"replacement_sources": [
|
|
"OSV Rails"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "rails",
|
|
"display_name": "Ruby on Rails",
|
|
"source_name": "NVD Ruby on Rails",
|
|
"bucket": "ecosystem_sources",
|
|
"kind": "nvd-search",
|
|
"retired_reason": "OSV Rails replaces NVD public search for lower-latency machine-readable collection.",
|
|
"replacement_sources": [
|
|
"OSV Rails"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "react",
|
|
"display_name": "React",
|
|
"source_name": "GitHub Global Advisories",
|
|
"bucket": "official_sources",
|
|
"kind": "ghsa-global",
|
|
"retired_reason": "Unauthenticated GHSA API requests are rate-limited in daily monitoring; GitHub React Advisories and OSV React remain active replacements.",
|
|
"replacement_sources": [
|
|
"GitHub React Advisories",
|
|
"OSV React"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "redmine",
|
|
"display_name": "Redmine",
|
|
"source_name": "NVD Redmine",
|
|
"bucket": "official_sources",
|
|
"kind": "nvd-search",
|
|
"retired_reason": "Official Redmine advisories page remains active and NVD public search is retired to reduce cold-start latency.",
|
|
"replacement_sources": [
|
|
"Redmine Security Advisories"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "saleor",
|
|
"display_name": "Saleor",
|
|
"source_name": "NVD Saleor",
|
|
"bucket": "official_sources",
|
|
"kind": "nvd-search",
|
|
"retired_reason": "OSV Saleor replaces NVD for machine-readable collection and aligns with the published PyPI package.",
|
|
"replacement_sources": [
|
|
"GitHub Saleor Advisories",
|
|
"OSV Saleor"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "shopware",
|
|
"display_name": "Shopware",
|
|
"source_name": "NVD Shopware",
|
|
"bucket": "official_sources",
|
|
"kind": "nvd-search",
|
|
"retired_reason": "OSV Shopware replaces NVD for machine-readable collection with lower cold-start overhead.",
|
|
"replacement_sources": [
|
|
"Shopware Security Advisories",
|
|
"OSV Shopware"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "spring-boot",
|
|
"display_name": "Spring Boot",
|
|
"source_name": "GitHub Global Advisories",
|
|
"bucket": "official_sources",
|
|
"kind": "ghsa-global",
|
|
"retired_reason": "Unauthenticated GitHub advisory API is quota-limited; Spring official page and OSV remain the active replacements.",
|
|
"replacement_sources": [
|
|
"Spring Security Advisories",
|
|
"OSV Spring Boot"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "spring-framework",
|
|
"display_name": "Spring Framework",
|
|
"source_name": "GitHub Global Advisories",
|
|
"bucket": "official_sources",
|
|
"kind": "ghsa-global",
|
|
"retired_reason": "Unauthenticated GHSA API requests are rate-limited in daily monitoring; Spring official page and OSV remain the active replacements.",
|
|
"replacement_sources": [
|
|
"Spring Security Advisories",
|
|
"OSV Spring Framework"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "spring-security",
|
|
"display_name": "Spring Security",
|
|
"source_name": "GitHub Global Advisories",
|
|
"bucket": "official_sources",
|
|
"kind": "ghsa-global",
|
|
"retired_reason": "Unauthenticated GitHub advisory API is quota-limited; Spring official page and OSV remain the active replacements.",
|
|
"replacement_sources": [
|
|
"Spring Security Advisories",
|
|
"OSV Spring Security"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "sveltekit",
|
|
"display_name": "SvelteKit",
|
|
"source_name": "GitHub Global Advisories",
|
|
"bucket": "official_sources",
|
|
"kind": "ghsa-global",
|
|
"retired_reason": "Unauthenticated GHSA API requests are rate-limited in daily monitoring; OSV SvelteKit remains the active replacement source.",
|
|
"replacement_sources": [
|
|
"OSV SvelteKit"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "symfony",
|
|
"display_name": "Symfony",
|
|
"source_name": "GitHub Global Advisories",
|
|
"bucket": "official_sources",
|
|
"kind": "ghsa-global",
|
|
"retired_reason": "Unauthenticated GitHub advisory API is quota-limited; OSV Symfony remains the active machine-readable source.",
|
|
"replacement_sources": [
|
|
"OSV Symfony"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "undici",
|
|
"display_name": "Undici",
|
|
"source_name": "GitHub Global Advisories",
|
|
"bucket": "official_sources",
|
|
"kind": "ghsa-global",
|
|
"retired_reason": "Unauthenticated GHSA API requests are rate-limited in daily monitoring; OSV Undici remains the active replacement source.",
|
|
"replacement_sources": [
|
|
"OSV Undici"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "undici",
|
|
"display_name": "Undici",
|
|
"source_name": "NVD Undici",
|
|
"bucket": "ecosystem_sources",
|
|
"kind": "nvd-search",
|
|
"retired_reason": "OSV Undici replaces NVD public search for lower-latency machine-readable collection.",
|
|
"replacement_sources": [
|
|
"OSV Undici"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "vite",
|
|
"display_name": "Vite",
|
|
"source_name": "GitHub Global Advisories",
|
|
"bucket": "official_sources",
|
|
"kind": "ghsa-global",
|
|
"retired_reason": "Unauthenticated GHSA API requests are rate-limited in daily monitoring; Vite Security and OSV Vite remain active replacements.",
|
|
"replacement_sources": [
|
|
"Vite Security",
|
|
"OSV Vite"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "vue",
|
|
"display_name": "Vue",
|
|
"source_name": "GitHub Global Advisories",
|
|
"bucket": "official_sources",
|
|
"kind": "ghsa-global",
|
|
"retired_reason": "Unauthenticated GHSA API requests are rate-limited in daily monitoring; Vue Security and OSV Vue remain active replacements.",
|
|
"replacement_sources": [
|
|
"Vue Security",
|
|
"OSV Vue"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "webpack",
|
|
"display_name": "webpack",
|
|
"source_name": "GitHub Global Advisories",
|
|
"bucket": "official_sources",
|
|
"kind": "ghsa-global",
|
|
"retired_reason": "Unauthenticated GHSA API requests are rate-limited in daily monitoring; OSV webpack remains the active replacement source.",
|
|
"replacement_sources": [
|
|
"OSV webpack"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "webpack",
|
|
"display_name": "webpack",
|
|
"source_name": "NVD webpack",
|
|
"bucket": "ecosystem_sources",
|
|
"kind": "nvd-search",
|
|
"retired_reason": "OSV webpack replaces NVD public search for lower-latency machine-readable collection.",
|
|
"replacement_sources": [
|
|
"OSV webpack"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "werkzeug",
|
|
"display_name": "Werkzeug",
|
|
"source_name": "GitHub Global Advisories",
|
|
"bucket": "official_sources",
|
|
"kind": "ghsa-global",
|
|
"retired_reason": "Unauthenticated GitHub advisory API is quota-limited; OSV Werkzeug remains the active machine-readable source.",
|
|
"replacement_sources": [
|
|
"OSV Werkzeug"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "woocommerce",
|
|
"display_name": "WooCommerce",
|
|
"source_name": "NVD WooCommerce",
|
|
"bucket": "official_sources",
|
|
"kind": "nvd-search",
|
|
"retired_reason": "OSV WooCommerce replaces NVD for machine-readable collection while official and ecosystem advisory pages remain active.",
|
|
"replacement_sources": [
|
|
"Woo Developer Advisories",
|
|
"GitHub WooCommerce Advisories",
|
|
"OSV WooCommerce"
|
|
],
|
|
"url": ""
|
|
},
|
|
{
|
|
"system_id": "wordpress",
|
|
"display_name": "WordPress",
|
|
"source_name": "NVD WordPress",
|
|
"bucket": "official_sources",
|
|
"kind": "nvd-search",
|
|
"retired_reason": "WordPress official RSS plus ecosystem plugin intelligence cover active collection with lower cold-start latency and lower public-search dependence than NVD.",
|
|
"replacement_sources": [
|
|
"WordPress Security News RSS",
|
|
"Wordfence Vulnerability Database",
|
|
"WPScan Vulnerability Database"
|
|
],
|
|
"url": ""
|
|
}
|
|
]</pre>
|
|
</div>
|
|
</main>
|
|
</body>
|
|
</html>
|