cve-schema
This repository is used for the development of the CVE JSON record format. Releases of the CVE JSON record format will also be published here. This repository is managed by the CVE Quality Working Group. (by CVEProject)
gsd-tools
Global Security Database Tools (by CloudSecurityAlliance)
| cve-schema | gsd-tools | |
|---|---|---|
| 2 | 1 | |
| 216 | 39 | |
| 6.9% | - | |
| 4.8 | 6.9 | |
| 8 days ago | 5 months ago | |
| HTML | Python | |
| Creative Commons Zero v1.0 Universal | Apache License 2.0 |
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
cve-schema
Posts with mentions or reviews of cve-schema.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2022-10-02.
- Greetings! CVE API to CSV
-
Rage about CVE dataset quality(?)
I adopted JSON for the CVE data format when I invented it (https://github.com/CVEProject/cve-schema/tree/master/schema ) for two main reasons:
gsd-tools
Posts with mentions or reviews of gsd-tools.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2022-04-17.
-
Rage about CVE dataset quality(?)
SQL won't prevent data errors any more than using JSON, you can have schema validation and the exact same data validation tooling, which we'd be more than happy to have, if you want to build this simply submit PR's against the tools repo: https://github.com/cloudsecurityalliance/gsd-tools
What are some alternatives?
When comparing cve-schema and gsd-tools you can also consider the following projects:
opencve - CVE Alerting Platform
Loki - Loki - Simple IOC and YARA Scanner
cvelistV5 - CVE cache of the official CVE List in CVE JSON 5 format
cvelist - Pilot program for CVE submission through GitHub. CVE Record Submission via Pilot PRs ending 6/30/2023
osv.dev - Open source vulnerability DB and triage service.