NPM.CVE (NPM v0.6.0)

CVE (Common Vulnerabilities and Exposures) cross-referencing.

Maps npm advisory data to CVE identifiers and provides vulnerability severity analysis.

Summary

Functions

above_threshold?(advisories, threshold)

Checks if any advisory is above a given threshold.

compare_severity(a, b)

Compares two severity levels. Returns :gt, :lt, or :eq.

extract_cves(arg1)

Extracts CVE identifiers from advisory data.

format_summary(advisories)

Formats a vulnerability summary.

group_by_package(advisories)

Groups advisories by affected package.

max_severity(advisories)

Returns the highest severity from a list of advisories.

severity_counts(advisories)

Counts advisories by severity.

Functions

above_threshold?(advisories, threshold)

@spec above_threshold?([map()], String.t()) :: boolean()

Checks if any advisory is above a given threshold.

compare_severity(a, b)

@spec compare_severity(String.t(), String.t()) :: :gt | :lt | :eq

Compares two severity levels. Returns :gt, :lt, or :eq.

extract_cves(arg1)

@spec extract_cves(map()) :: [String.t()]

Extracts CVE identifiers from advisory data.

format_summary(advisories)

@spec format_summary([map()]) :: String.t()

Formats a vulnerability summary.

group_by_package(advisories)

@spec group_by_package([map()]) :: %{required(String.t()) => [map()]}

Groups advisories by affected package.

max_severity(advisories)

@spec max_severity([map()]) :: String.t()

Returns the highest severity from a list of advisories.

severity_counts(advisories)

@spec severity_counts([map()]) :: %{required(String.t()) => non_neg_integer()}

Counts advisories by severity.