Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix(ruby): remove advisories from OSVDB #148

Merged
merged 3 commits into from
Sep 4, 2021
Merged

fix(ruby): remove advisories from OSVDB #148

merged 3 commits into from
Sep 4, 2021

Conversation

afdesk
Copy link
Contributor

@afdesk afdesk commented Sep 3, 2021
edited
Loading

OSVDB doesn't allow commercial usage without agreement.
Skipping OSVDB* files so that Trivy can be used in commercials.

also remove the defunct osvdb.org website from URL.

Fixes aquasecurity/trivy/#1208

@afdesk
fix(ruby): remove advisories from OSVDB
0615bc2 
OSVDB doesn't allow commercial usage without agreement.
Skip those advisories so that Trivy can be used in commercials.

Fixes #1208 in github.com/aquasecurity/trivy/
@afdesk
fix(ruby): remove advisories from OSVDB
f94d5ab 
Select OSVDB advisories which have osvdb field or url contains `osvdb.org`.

Fixes #1208 in github.com/aquasecurity/trivy/
@afdesk
fix(ruby): remove advisories from OSVDB
74e845d 
OSVDB doesn't allow commercial usage without agreement.
Skipping OSVDB* files so that Trivy can be used in commercials.

also remove the defunct `osvdb.org` website from URL.

Fixes #1208 in github.com/aquasecurity/trivy/
@knqyf263
Copy link
Collaborator

knqyf263 commented Sep 4, 2021

Fix aquasecurity/trivy#1208

@knqyf263 knqyf263 merged commit a93efa1 into aquasecurity:main Sep 4, 2021
@knqyf263
Copy link
Collaborator

knqyf263 commented Sep 4, 2021

@afdesk Also, could you update this document? We no longer depend on OSVDB and can use "Ruby Advisory Database" for commercial usage.
https://github.com/aquasecurity/trivy/blob/main/docs/vulnerability/detection/data-source.md

@knqyf263 knqyf263 mentioned this pull request Mar 6, 2022
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@knqyf263 knqyf263 knqyf263 approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

fix(ruby): remove advisories from OSVDB
2 participants
@afdesk @knqyf263