head 1.7; access; symbols pkgsrc-2026Q1:1.7.0.4 pkgsrc-2026Q1-base:1.7 pkgsrc-2025Q4:1.7.0.2 pkgsrc-2025Q4-base:1.7 pkgsrc-2025Q3:1.6.0.2 pkgsrc-2025Q3-base:1.6 pkgsrc-2025Q2:1.5.0.2 pkgsrc-2025Q2-base:1.5 pkgsrc-2025Q1:1.4.0.2 pkgsrc-2025Q1-base:1.4 pkgsrc-2024Q4:1.3.0.2 pkgsrc-2024Q4-base:1.3 pkgsrc-2024Q3:1.2.0.2 pkgsrc-2024Q3-base:1.2 pkgsrc-2024Q2:1.1.0.6 pkgsrc-2024Q2-base:1.1 pkgsrc-2024Q1:1.1.0.4 pkgsrc-2024Q1-base:1.1 pkgsrc-2023Q4:1.1.0.2 pkgsrc-2023Q4-base:1.1; locks; strict; comment @# @; 1.7 date 2025.10.09.07.57.56; author wiz; state Exp; branches; next 1.6; commitid t4nMY0Dt3rBjSRdG; 1.6 date 2025.09.02.07.29.46; author adam; state Exp; branches; next 1.5; commitid 7IorjhAiHCYxU69G; 1.5 date 2025.04.14.05.09.33; author adam; state Exp; branches; next 1.4; commitid RnTITH4beRfuFYQF; 1.4 date 2025.01.14.06.43.18; author adam; state Exp; branches; next 1.3; commitid oMRL93Nn1gHX4qFF; 1.3 date 2024.11.11.07.28.55; author wiz; state Exp; branches; next 1.2; commitid 1fBDq3LwS98NncxF; 1.2 date 2024.08.22.09.56.57; author adam; state Exp; branches; next 1.1; commitid uc8V15Dy9sWnONmF; 1.1 date 2023.11.19.01.16.31; author wiz; state Exp; branches; next ; commitid UDmT3YaJ7yBYP9NE; desc @@ 1.7 log @*: remove reference to (removed) Python 3.9 @ text @# $NetBSD: Makefile,v 1.6 2025/09/02 07:29:46 adam Exp $ DISTNAME= nvdlib-0.8.3 PKGNAME= ${PYPKGPREFIX}-${DISTNAME} CATEGORIES= security python www MASTER_SITES= ${MASTER_SITE_GITHUB:=vehemont/} GITHUB_PROJECT= nvdlib GITHUB_TAG= v${PKGVERSION_NOREV} MAINTAINER= pkgsrc-users@@NetBSD.org HOMEPAGE= https://github.com/Vehemont/nvdlib COMMENT= National Vulnerability Database CPE/CVE API Library for Python LICENSE= mit TOOL_DEPENDS+= ${PYPKGPREFIX}-setuptools>=78:../../devel/py-setuptools DEPENDS+= ${PYPKGPREFIX}-requests>=2.24.0:../../devel/py-requests TEST_DEPENDS+= ${PYPKGPREFIX}-responses>=0.18:../../net/py-responses USE_LANGUAGES= # none PYTHON_VERSIONS_INCOMPATIBLE= 310 .include "../../lang/python/wheel.mk" .include "../../mk/bsd.pkg.mk" @ 1.6 log @py-nvdlib: updated to 0.8.3 0.8.3 Fixed an issue with searchCPEmatch where batching/paging did not work correctly Modified to paging logic to better align with NIST published best practices for the NVD AP @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.5 2025/04/14 05:09:33 adam Exp $ d21 1 a21 1 PYTHON_VERSIONS_INCOMPATIBLE= 39 310 @ 1.5 log @py-nvdlib: updated to 0.8.0 0.8.0 (2025-03-19) **Bugfixes** - Fixed passing the boolean to the URL on hasKev, hasOval, hasCertAlerts, hasCertNotes, and keyworkExactMatch @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.4 2025/01/14 06:43:18 adam Exp $ d3 1 a3 1 DISTNAME= nvdlib-0.8.0 d21 2 @ 1.4 log @py-nvdlib: updated to 0.7.9 0.7.9 (2025-01-13) **Enhancements** - Added missing CVSS 3.0 data for `attackVector`, `attackComplexity`, `privilegesRequired`, `userInteraction`, `scope`, `confidentialityImpact`, `integrityImpact`, and `availabilityImpact` as reported from https://github.com/vehemont/nvdlib/issues/48 - Added basic CVSS 4.0 data: `v40score`, `v40vector`, and `v40severity` in CVEs. - Merged https://github.com/vehemont/nvdlib/pull/49 and https://github.com/vehemont/nvdlib/pull/50 to add more type hints and also fixes the MatchString search. Courtesy of @@LachJones. - Increased minimum required Python version to `3.11` or later from Python 3.8.3. This opens up some cooler features and fixed a compatibility issue with `LiteralString` not being available until 3.11. 0.7.8 (2024-07-11) **Enhancements** - Merged https://github.com/vehemont/nvdlib/pull/44 - Updated delay parameter to a float. - Removed verbose in favor of the Python logging module. To try out the new logging addition, try the simple logger configuration below. It will create a file named "example_NVDLib.log" and will log NVDLib and Requests actions into the file. Syntax errors/HTTP server errors are logging level of "error", URLs requested (similar output to the previous `verbose` parameter) are set to "debug". ``` import logging import nvdlib logging.basicConfig(filename='example_NVDLib.log', encoding='utf-8', level=logging.DEBUG) r = nvdlib.searchCVE(keywordSearch="Microsoft") ``` @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.3 2024/11/11 07:28:55 wiz Exp $ d3 1 a3 1 DISTNAME= nvdlib-0.7.9 d15 1 a15 1 TOOL_DEPENDS+= ${PYPKGPREFIX}-setuptools-[0-9]*:../../devel/py-setuptools @ 1.3 log @py-*: remove unused tool dependency py-setuptools includes the py-wheel functionality nowadays @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.2 2024/08/22 09:56:57 adam Exp $ d3 1 a3 1 DISTNAME= nvdlib-0.7.7 @ 1.2 log @py-nvdlib: updated to 0.7.7 0.7.7 (2024-06-02) **Bugfixes** - Fix cwe attr in CVE by @@jobselko in https://github.com/vehemont/nvdlib/pull/39 **Enhancements** - Added CPE Match String API with `nvdlib.searchCPEmatch`, check out the documentation at https://nvdlib.com/en/latest/v2/CVEv2.html#CPE-Match-Criteria-API and more information can be found at the NVD API documentation page: https://nvd.nist.gov/developers/products @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.1 2023/11/19 01:16:31 wiz Exp $ a15 1 TOOL_DEPENDS+= ${PYPKGPREFIX}-wheel-[0-9]*:../../devel/py-wheel @ 1.1 log @security/py-nvdlib: import py-nvdlib-0.7.6 NVDlib is a Python library that allows you to interface with the NIST National Vulnerability Database (NVD), pull vulnerabilities (CVEs), and Common Platform Enumeration (CPEs) into easily accessible objects. ### Features - Search the NVD for CVEs using all parameters allowed by the NVD API (recently updated to utilize version 2 of the API). Including search criteria such as CVE publish and modification date, keywords, severity, score, or CPE name. - Search CPE names by keywords, CPE match strings, or modification dates. Then pull the CVE ID's that are relevant to those CPEs. - Retrieve details on individual CVEs, their relevant CPE names, and more. - Built in rate limiting according to NIST NVD recommendations. Get an API key to allow for a delay argument to be passed. Otherwise it is 6 seconds between requests by default. @ text @d1 1 a1 1 # $NetBSD$ d3 1 a3 1 DISTNAME= nvdlib-0.7.6 d11 1 a11 1 HOMEPAGE= https://github.com/Vehemont/nvdlib/ d15 2 a16 1 TOOL_DEPENDS+= ${PYPKGPREFIX}-wheel>=0:../../devel/py-wheel a21 2 PYTHON_VERSIONS_INCOMPATIBLE= 27 @