--- - name: 'almalinux-alba' versions_from_repo: False type: 0 ignore_patterns: ['^(?!ALBA-).*$'] directory_path: 'advisories' repo_url: 'https://github.com/AlmaLinux/osv-database.git' detect_cherrypicks: False extension: '.json' db_prefix: ['ALBA-'] ignore_git: False human_link: '{% if ECOSYSTEM_VER %}https://errata.almalinux.org/{{ ECOSYSTEM_VER }}/{{ BUG_ID | replace(":", "-", 1) }}.html{% endif %}' link: 'https://github.com/AlmaLinux/osv-database/blob/master/' editable: False strict_validation: True - name: 'almalinux-alea' versions_from_repo: False type: 0 ignore_patterns: ['^(?!ALEA-).*$'] directory_path: 'advisories' repo_url: 'https://github.com/AlmaLinux/osv-database.git' detect_cherrypicks: False extension: '.json' db_prefix: ['ALEA-'] ignore_git: False human_link: '{% if ECOSYSTEM_VER %}https://errata.almalinux.org/{{ ECOSYSTEM_VER }}/{{ BUG_ID | replace(":", "-", 1) }}.html{% endif %}' link: 'https://github.com/AlmaLinux/osv-database/blob/master/' editable: False strict_validation: True - name: 'almalinux-alsa' versions_from_repo: False type: 0 ignore_patterns: ['^(?!ALSA-).*$'] directory_path: 'advisories' repo_url: 'https://github.com/AlmaLinux/osv-database.git' detect_cherrypicks: False extension: '.json' db_prefix: ['ALSA-'] ignore_git: False human_link: '{% if ECOSYSTEM_VER %}https://errata.almalinux.org/{{ ECOSYSTEM_VER }}/{{ BUG_ID | replace(":", "-", 1) }}.html{% endif %}' link: 'https://github.com/AlmaLinux/osv-database/blob/master/' editable: False strict_validation: True - name: 'alpine' versions_from_repo: False type: 1 ignore_patterns: ['^(?!ALPINE-).*$'] directory_path: 'alpine' detect_cherrypicks: False extension: '.json' bucket: 'osv-test-cve-osv-conversion' db_prefix: ['ALPINE-'] ignore_git: True human_link: 'https://security.alpinelinux.org/vuln/{{ BUG_ID | replace("ALPINE-", "") }}' link: 'https://storage.googleapis.com/osv-test-cve-osv-conversion/' editable: False strict_validation: True - name: 'android' versions_from_repo: False type: 1 ignore_patterns: ['^(?!(ASB|PUB|A)-).*$'] detect_cherrypicks: False extension: '.json' bucket: 'android-osv-test' db_prefix: ['A-', 'ASB-A', 'PUB-A'] ignore_git: True link: 'https://storage.googleapis.com/android-osv-test/' editable: False strict_validation: True - name: 'azurelinux' versions_from_repo: False type: 0 ignore_patterns: ['^(?!AZL-).*$'] directory_path: 'osv' repo_url: 'https://github.com/microsoft/AzureLinuxVulnerabilityData.git' detect_cherrypicks: False extension: '.json' db_prefix: ['AZL-'] ignore_git: False link: 'https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/' editable: False strict_validation: True - name: 'bellsoft' versions_from_repo: False type: 0 ignore_patterns: ['^(?!BELL-CVE-).*$'] directory_path: 'BELL-CVE' repo_url: 'https://github.com/bell-sw/osv-database.git' detect_cherrypicks: False extension: '.json' db_prefix: ['BELL-'] ignore_git: False human_link: 'https://docs.bell-sw.com/security/cves/{{ BUG_ID }}/' link: 'https://github.com/bell-sw/osv-database/blob/master/' editable: False strict_validation: True - name: 'bitnami' versions_from_repo: False type: 0 ignore_patterns: ['^(?!BIT-).*$'] directory_path: 'data' repo_url: 'https://github.com/bitnami/vulndb.git' detect_cherrypicks: False extension: '.json' db_prefix: ['BIT-'] ignore_git: False link: 'https://github.com/bitnami/vulndb/tree/main/' editable: False strict_validation: True - name: 'chainguard' versions_from_repo: False rest_api_url: 'https://packages.cgr.dev/chainguard/osv/all.json' type: 2 ignore_patterns: ['^(?!CGA-).*$'] # NOTE: Not currently supported for REST sources directory_path: 'chainguard/osv' detect_cherrypicks: False extension: '.json' db_prefix: ['CGA-'] ignore_git: True link: 'https://packages.cgr.dev/chainguard/osv/' human_link: 'https://images.chainguard.dev/security/{{ BUG_ID }}' editable: False strict_validation: True - name: 'cleanstart' versions_from_repo: False type: 0 ignore_patterns: ['^(?!CLEANSTART-).*$'] directory_path: 'advisories' repo_url: 'https://github.com/cleanstart-dev/cleanstart-security-advisories' detect_cherrypicks: False extension: '.json' db_prefix: ['CLEANSTART-'] ignore_git: True link: 'https://github.com/cleanstart-dev/cleanstart-security-advisories/blob/main/' editable: False strict_validation: True - name: 'curl' versions_from_repo: False rest_api_url: 'https://curl.se/docs/vuln.json' type: 2 ignore_patterns: ['^(?!CURL-).*$'] # NOTE: Not currently supported for REST sources directory_path: 'docs' detect_cherrypicks: False extension: '.json' db_prefix: ['CURL-'] ignore_git: False human_link: 'https://curl.se/docs/{{ BUG_ID | replace("CURL-", "") }}.html' link: 'https://curl.se/docs/' editable: False strict_validation: True - name: 'cve-osv' versions_from_repo: True type: 1 ignore_patterns: ['^(?!CVE-).*$'] directory_path: 'osv-output' detect_cherrypicks: False extension: '.json' bucket: 'osv-test-cve-osv-conversion' db_prefix: ['CVE-'] ignore_git: False human_link: 'https://cve.org/CVERecord?id={{ BUG_ID }}' link: 'https://storage.googleapis.com/osv-test-cve-osv-conversion/' editable: False strict_validation: True - name: 'debian-cve' versions_from_repo: False type: 1 ignore_patterns: ['^(?!DEBIAN-).*$'] directory_path: 'debian-cve-osv' detect_cherrypicks: False extension: '.json' bucket: 'osv-test-debian-osv' db_prefix: ['DEBIAN-'] ignore_git: True human_link: 'https://security-tracker.debian.org/tracker/{{ BUG_ID | replace("DEBIAN-", "") }}' link: 'https://storage.googleapis.com/osv-test-debian-osv/' editable: False strict_validation: True - name: 'debian-dla' versions_from_repo: False type: 1 ignore_patterns: ['^(?!DLA-).*$'] directory_path: 'dla-osv' detect_cherrypicks: False extension: '.json' bucket: 'osv-test-debian-osv' db_prefix: ['DLA-'] ignore_git: True human_link: 'https://security-tracker.debian.org/tracker/{{ BUG_ID }}' link: 'https://storage.googleapis.com/debian-osv/' editable: False strict_validation: True - name: 'debian-dsa' versions_from_repo: False type: 1 ignore_patterns: ['^(?!DSA-).*$'] directory_path: 'dsa-osv' detect_cherrypicks: False extension: '.json' bucket: 'osv-test-debian-osv' db_prefix: ['DSA-'] ignore_git: True human_link: 'https://security-tracker.debian.org/tracker/{{ BUG_ID }}' link: 'https://storage.googleapis.com/debian-osv/' editable: False strict_validation: True - name: 'debian-dtsa' versions_from_repo: False type: 1 ignore_patterns: ['^(?!DTSA-).*$'] directory_path: 'dtsa-osv' detect_cherrypicks: False extension: '.json' bucket: 'osv-test-debian-osv' db_prefix: ['DTSA-'] ignore_git: True human_link: 'https://security-tracker.debian.org/tracker/{{ BUG_ID }}' link: 'https://storage.googleapis.com/debian-osv/' editable: False strict_validation: True - name: 'drupal' versions_from_repo: False type: 0 ignore_patterns: ['^(?!DRUPAL-).*$'] directory_path: 'advisories' repo_url: 'https://github.com/DrupalSecurityTeam/drupal-advisory-database.git' detect_cherrypicks: False extension: '.json' db_prefix: ['DRUPAL-'] ignore_git: True link: 'https://github.com/DrupalSecurityTeam/drupal-advisory-database/blob/main/' editable: False strict_validation: True - name: 'echo' versions_from_repo: False rest_api_url: 'https://advisory.dev.echohq.com/osv/all.json' type: 2 ignore_patterns: ['^(?!ECHO-).*$'] directory_path: 'osv' detect_cherrypicks: False extension: '.json' db_prefix: ['ECHO-'] ignore_git: True link: 'https://advisory.echohq.com/osv/' editable: False strict_validation: True - name: 'eef' type: 2 rest_api_url: 'https://cna.erlef.org/osv/all.json' db_prefix: ['EEF-'] human_link: 'https://cna.erlef.org/osv/{{ BUG_ID }}.html' link: 'https://cna.erlef.org/osv/' directory_path: 'osv' extension: '.json' ignore_patterns: ['^(?!EEF-).*$'] # Not directly editable, but we're happy to take suggestions: # https://cna.erlef.org/contact editable: False versions_from_repo: True - name: 'ghsa' versions_from_repo: False type: 0 ignore_patterns: ['^(?!GHSA-).*$'] directory_path: 'advisories/github-reviewed' repo_url: 'https://github.com/github/advisory-database.git' detect_cherrypicks: False extension: '.json' db_prefix: ['GHSA-'] ignore_git: True human_link: 'https://github.com/advisories/{{ BUG_ID }}' link: 'https://github.com/github/advisory-database/blob/main/' editable: False strict_validation: True - name: 'go' versions_from_repo: True type: 1 ignore_patterns: ['^(?!GO-).*$'] directory_path: 'ID' detect_cherrypicks: True extension: '.json' bucket: 'go-vulndb' db_prefix: ['GO-'] ignore_git: True human_link: 'https://pkg.go.dev/vuln/{{ BUG_ID }}' link: 'https://vuln.go.dev/' editable: False strict_validation: True - name: 'haskell' versions_from_repo: False type: 0 ignore_patterns: ['^(?!HSEC-).*$'] repo_branch: 'generated/osv-export' repo_url: 'https://github.com/haskell/security-advisories.git' detect_cherrypicks: False extension: '.json' db_prefix: ['HSEC-'] ignore_git: False link: 'https://github.com/haskell/security-advisories/blob/generated/osv-export/' editable: False repo_username: 'git' strict_validation: True - name: 'julia' versions_from_repo: False type: 0 ignore_patterns: ['^(?!JLSEC-).*$'] repo_branch: 'generated/osv' repo_url: 'https://github.com/JuliaLang/SecurityAdvisories.jl.git' detect_cherrypicks: False extension: '.json' db_prefix: ['JLSEC-'] ignore_git: False human_link: 'https://github.com/JuliaLang/SecurityAdvisories.jl/blob/main/advisories/published/{{ BUG_ID.split("-")[1] }}/{{ BUG_ID }}.md' link: 'https://github.com/JuliaLang/SecurityAdvisories.jl/tree/generated/osv/' editable: False repo_username: 'git' strict_validation: True - name: 'mageia' versions_from_repo: False rest_api_url: 'https://advisories.mageia.org/vulns.json' type: 2 ignore_patterns: ['^(?!MGASA-).*$'] directory_path: . detect_cherrypicks: False extension: '.json' db_prefix: ['MGASA-'] ignore_git: True human_link: 'https://advisories.mageia.org/{{ BUG_ID }}.html' link: 'https://advisories.mageia.org/' editable: False strict_validation: True - name: 'malicious-packages' versions_from_repo: False type: 0 ignore_patterns: ['MAL-0000.*', '^(?!MAL-).*$'] directory_path: 'osv' repo_url: 'https://github.com/ossf/malicious-packages.git' detect_cherrypicks: False extension: '.json' db_prefix: ['MAL-'] ignore_git: False link: 'https://github.com/ossf/malicious-packages/blob/main/' editable: False strict_validation: True - name: 'minimos' versions_from_repo: False rest_api_url: 'https://packages.mini.dev/advisories/osv/all.json' type: 2 ignore_patterns: ['^(?!MINI-).*$'] directory_path: 'advisories/osv' detect_cherrypicks: False extension: '.json' db_prefix: ['MINI-'] ignore_git: True link: 'https://packages.mini.dev/advisories/osv/' editable: False strict_validation: True - name: 'opam' versions_from_repo: False type: 0 ignore_patterns: ['^(?!OSEC-).*$'] repo_branch: 'generated-osv' repo_url: 'https://github.com/ocaml/security-advisories.git' detect_cherrypicks: False extension: '.json' db_prefix: ['OSEC-'] ignore_git: False link: 'https://github.com/ocaml/security-advisories/blob/generated-osv/' editable: False repo_username: 'git' strict_validation: True - name: 'openeuler' versions_from_repo: False rest_api_url: 'https://repo.openeuler.org/security/data/osv/all.json' type: 2 ignore_patterns: ['^(?!OESA-).*$'] directory_path: 'security/data/osv' detect_cherrypicks: False extension: '.json' db_prefix: ['OESA-'] ignore_git: True human_link: 'https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-{{ BUG_ID | replace("OESA-", "") }}' link: 'https://repo.openeuler.org/security/data/osv/' editable: False strict_validation: True - name: 'test-oss-fuzz' versions_from_repo: True type: 0 ignore_patterns: ['^(?!OSV-).*$'] directory_path: 'vulns' # deliberately HTTPS due to lack of SSH credentials in Staging. repo_url: 'https://github.com/google/oss-fuzz-vulns.git' detect_cherrypicks: True extension: '.yaml' db_prefix: ['OSV-'] ignore_git: False link: 'https://github.com/google/oss-fuzz-vulns/blob/main/' editable: False strict_validation: True - name: 'psf' versions_from_repo: True type: 0 ignore_patterns: ['^(?!PSF-).*$'] directory_path: 'advisories' repo_url: 'https://github.com/psf/advisory-database.git' detect_cherrypicks: False extension: '.json' db_prefix: ['PSF-'] ignore_git: False link: 'https://github.com/psf/advisory-database/blob/main/' editable: False strict_validation: True - name: 'python' versions_from_repo: False type: 0 ignore_patterns: ['PYSEC-0000.*', '^(?!PYSEC-).*$'] directory_path: 'vulns' repo_url: 'https://github.com/pypa/advisory-database' detect_cherrypicks: False extension: '.yaml' db_prefix: ['PYSEC-'] ignore_git: False link: 'https://github.com/pypa/advisory-database/blob/main/' editable: False strict_validation: True - name: 'r' versions_from_repo: False type: 0 ignore_patterns: ['^(?!RSEC-).*$'] directory_path: 'vulns' repo_url: 'https://github.com/RConsortium/r-advisory-database.git' detect_cherrypicks: False extension: '.yaml' db_prefix: ['RSEC-'] ignore_git: False link: 'https://github.com/RConsortium/r-advisory-database/blob/main/' editable: False strict_validation: True - name: 'redhat' versions_from_repo: False rest_api_url: 'https://security.access.redhat.com/data/osv/all.json' type: 2 directory_path: 'data/osv' detect_cherrypicks: False ignore_patterns: ['^(?!RH[BES]{1}A-).*$'] extension: '.json' db_prefix: ['RHBA-', 'RHEA-', 'RHSA-'] ignore_git: False human_link: 'https://access.redhat.com/errata/{{ BUG_ID }}' link: 'https://security.access.redhat.com/data/osv/' editable: False strict_validation: True - name: 'rockylinux' versions_from_repo: False type: 1 ignore_patterns: ['^(?!RLSA-).*$'] detect_cherrypicks: False extension: '.json' bucket: 'resf-osv-data' db_prefix: ['RLSA-'] ignore_git: False human_link: 'https://errata.rockylinux.org/{{ BUG_ID }}' link: 'https://storage.googleapis.com/resf-osv-data/' editable: False strict_validation: True - name: 'rockylinux-rxsa' versions_from_repo: False type: 1 ignore_patterns: ['^(?!RXSA-).*$'] detect_cherrypicks: False extension: '.json' bucket: 'resf-osv-data' db_prefix: ['RXSA-'] ignore_git: False human_link: 'https://errata.rockylinux.org/{{ BUG_ID }}' link: 'https://storage.googleapis.com/resf-osv-data/' editable: False strict_validation: True - name: 'root' versions_from_repo: False type: 2 rest_api_url: 'https://api.root.io/external/osv/all.json' ignore_patterns: ['^(?!ROOT-).*$'] directory_path: 'osv' detect_cherrypicks: False extension: '.json' db_prefix: ['ROOT-'] ignore_git: True human_link: 'https://root.io/security/{{ BUG_ID }}' link: 'https://api.root.io/external/osv/' editable: False strict_validation: True - name: 'rust' versions_from_repo: True type: 0 ignore_patterns: ['^(?!RUSTSEC-).*$'] repo_branch: 'osv' directory_path: 'crates' repo_url: 'https://github.com/rustsec/advisory-db.git' detect_cherrypicks: False extension: '.json' db_prefix: ['RUSTSEC-'] ignore_git: False human_link: 'https://rustsec.org/advisories/{{ BUG_ID }}' link: 'https://github.com/rustsec/advisory-db/blob/osv/' editable: False repo_username: 'git' strict_validation: False - name: 'suse' versions_from_repo: False rest_api_url: 'https://ftp.suse.com/pub/projects/security/osv/all.json' type: 2 ignore_patterns: ['^(?!(?:open)?SUSE-[FORS]U-).*$'] # NOTE: Not currently supported for REST sources directory_path: 'pub/projects/security/osv' detect_cherrypicks: False extension: '.json' db_prefix: ['openSUSE-', 'SUSE-'] ignore_git: True human_link: 'https://www.suse.com/support/update/announcement/{{ BUG_ID.split(":")[0].split("-")[2] }}/{{ BUG_ID | replace(":", "") | lower }}/' link: 'https://ftp.suse.com/pub/projects/security/osv/' editable: False strict_validation: True - name: 'tuxcare' versions_from_repo: False type: 0 ignore_patterns: ['^(?!CLSA-).*$'] directory_path: 'data' repo_url: 'https://github.com/cloudlinux/tuxcare-osv.git' detect_cherrypicks: False extension: '.json' db_prefix: ['CLSA-'] ignore_git: False link: 'https://github.com/cloudlinux/tuxcare-osv/tree/main/' editable: False strict_validation: True - name: 'ubuntu-cve' versions_from_repo: False type: 0 ignore_patterns: ['^(?!UBUNTU-).*$'] directory_path: 'osv' repo_url: 'https://github.com/canonical/ubuntu-security-notices.git' detect_cherrypicks: False extension: '.json' db_prefix: ['UBUNTU-'] ignore_git: False human_link: 'https://ubuntu.com/security/{{ BUG_ID | replace("UBUNTU-", "") }}' link: 'https://github.com/canonical/ubuntu-security-notices/blob/main/' editable: False strict_validation: True - name: 'ubuntu-lsn' versions_from_repo: False type: 0 ignore_patterns: ['^(?!LSN-).*$'] directory_path: 'osv' repo_url: 'https://github.com/canonical/ubuntu-security-notices.git' detect_cherrypicks: False extension: '.json' db_prefix: ['LSN-'] ignore_git: False human_link: 'https://ubuntu.com/security/notices/{{ BUG_ID }}' link: 'https://github.com/canonical/ubuntu-security-notices/blob/main/' editable: False strict_validation: True - name: 'ubuntu-usn' versions_from_repo: False type: 0 ignore_patterns: ['^(?!USN-).*$'] directory_path: 'osv' repo_url: 'https://github.com/canonical/ubuntu-security-notices.git' detect_cherrypicks: False extension: '.json' db_prefix: ['USN-'] ignore_git: False human_link: 'https://ubuntu.com/security/notices/{{ BUG_ID }}' link: 'https://github.com/canonical/ubuntu-security-notices/blob/main/' editable: False strict_validation: True - name: 'uvi' versions_from_repo: True type: 0 ignore_patterns: ['^(?!GSD-).*$'] repo_url: 'https://github.com/cloudsecurityalliance/gsd-database.git' detect_cherrypicks: False extension: '.json' db_prefix: ['GSD-'] ignore_git: False human_link: 'https://data.gsd.id/{{ BUG_ID }}' link: 'https://github.com/cloudsecurityalliance/gsd-database/blob/main/' editable: False key_path: 'OSV' repo_username: 'git' strict_validation: True - name: 'V8' versions_from_repo: True type: 0 ignore_patterns: [ '^(?!V8-advisory).*$' ] directory_path: 'advisories' repo_url: 'https://github.com/google/chromium-policy-vulnfeed.git' detect_cherrypicks: False consider_all_branches: True extension: '.json' db_prefix: ['V8-'] ignore_git: False human_link: 'https://github.com/google/chromium-policy-vulnfeed/blob/main/advisories/' link: 'https://github.com/google/chromium-policy-vulnfeed/blob/main/' editable: False repo_username: 'git' strict_validation: True