vulnerability-lookup/PyVulnerabilityLookup
13
1
Fork 0
mirror of https://github.com/cve-search/PyVulnerabilityLookup.git synced 2024-11-25 16:27:23 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

Merge pull request #66 from cedricbonhomme/patch-cbo
Some checks are pending
Python application - MyPy / Python ${{ matrix.python-version }} sample (3.10) (push) Waiting to run
Details
Python application - MyPy / Python ${{ matrix.python-version }} sample (3.11) (push) Waiting to run
Details
Python application - MyPy / Python ${{ matrix.python-version }} sample (3.12) (push) Waiting to run
Details
Python application - MyPy / Python ${{ matrix.python-version }} sample (3.8) (push) Waiting to run
Details
Python application - MyPy / Python ${{ matrix.python-version }} sample (3.9) (push) Waiting to run
Details
Python application - Test Public Interface / Python ${{ matrix.python-version }} sample (3.10) (push) Waiting to run
Details
Python application - Test Public Interface / Python ${{ matrix.python-version }} sample (3.11) (push) Waiting to run
Details
Python application - Test Public Interface / Python ${{ matrix.python-version }} sample (3.12) (push) Waiting to run
Details
Python application - Test Public Interface / Python ${{ matrix.python-version }} sample (3.8) (push) Waiting to run
Details
Python application - Test Public Interface / Python ${{ matrix.python-version }} sample (3.9) (push) Waiting to run
Details

Browse source 
new: Added creation and deletion method for comments and bundles.
This commit is contained in:
Raphaël Vinot 2024-07-26 12:37:55 +02:00 committed by GitHub
commit b5eabfe119
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
2 changed files with 43 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

43
pyvulnerabilitylookup/api.py
View file

@ -4,7 +4,7 @@ from __future__ import annotations
from importlib.metadata import version from importlib.metadata import version
from pathlib import PurePosixPath from pathlib import PurePosixPath
from typing import Any from typing import Any, Dict
from urllib.parse import urljoin, urlparse from urllib.parse import urljoin, urlparse
import requests import requests
@ -12,7 +12,7 @@ import requests
class PyVulnerabilityLookup(): class PyVulnerabilityLookup():
def __init__(self, root_url: str, useragent: str | None=None, def __init__(self, root_url: str, useragent: str | None=None, token: str | None=None,
*, proxies: dict[str, str] | None=None) -> None: *, proxies: dict[str, str] | None=None) -> None:
'''Query a specific instance. '''Query a specific instance.
@ -28,6 +28,9 @@ class PyVulnerabilityLookup():
self.root_url += '/' self.root_url += '/'
self.session = requests.session() self.session = requests.session()
self.session.headers['user-agent'] = useragent if useragent else f'PyProject / {version("pyvulnerabilitylookup")}' self.session.headers['user-agent'] = useragent if useragent else f'PyProject / {version("pyvulnerabilitylookup")}'
self.session.headers['X-API-KEY'] = token if token else ''
self.session.headers['Accept'] = 'application/json'
self.session.headers['Content-Type'] = 'application/json'
if proxies: if proxies:
self.session.proxies.update(proxies) self.session.proxies.update(proxies)
@ -96,11 +99,20 @@ class PyVulnerabilityLookup():
# NOTE: endpoints /api/cve/*, /api/dbInfo, /api/last are alises for backward compat. # NOTE: endpoints /api/cve/*, /api/dbInfo, /api/last are alises for backward compat.
def create_comment(self, comment: Dict[str, Any]) -> Dict[str, Any]:
'''Create a comment.
:param comment: The comment
'''
r = self.session.post(urljoin(self.root_url, str(PurePosixPath('api', 'comment'))),
json=comment)
return r.json()
def get_comments(self, uuid: str | None = None, vuln_id: str | None = None, def get_comments(self, uuid: str | None = None, vuln_id: str | None = None,
author: str | None = None) -> dict[str, Any]: author: str | None = None) -> dict[str, Any]:
'''Get comment(s) '''Get comment(s)
:param uuid: The UUID a specific comment :param uuid: The UUID of a specific comment
:param vuln_id: The vulnerability ID to get comments of :param vuln_id: The vulnerability ID to get comments of
:param author: The author of the comment(s) :param author: The author of the comment(s)
''' '''
@ -108,6 +120,23 @@ class PyVulnerabilityLookup():
params={'uuid': uuid, 'vuln_id': vuln_id, 'author': author}) params={'uuid': uuid, 'vuln_id': vuln_id, 'author': author})
return r.json() return r.json()
def delete_comment(self, comment_uuid: str) -> int:
'''Delete a comment.
:param comment_uuid: The comment UUID
'''
r = self.session.delete(urljoin(self.root_url, str(PurePosixPath('api', 'comment', comment_uuid))))
return r.status_code
def create_bundle(self, bundle: Dict[str, Any]) -> Dict[str, Any]:
'''Create a bundle.
:param bundle: The bundle
'''
r = self.session.post(urljoin(self.root_url, str(PurePosixPath('api', 'bundle'))),
json=bundle)
return r.json()
def get_bundles(self, uuid: str | None = None, vuln_id: str | None = None, def get_bundles(self, uuid: str | None = None, vuln_id: str | None = None,
author: str | None = None) -> dict[str, Any]: author: str | None = None) -> dict[str, Any]:
'''Get bundle(s) '''Get bundle(s)
@ -119,3 +148,11 @@ class PyVulnerabilityLookup():
r = self.session.get(urljoin(self.root_url, str(PurePosixPath('api', 'bundle'))), r = self.session.get(urljoin(self.root_url, str(PurePosixPath('api', 'bundle'))),
params={'uuid': uuid, 'vuln_id': vuln_id, 'author': author}) params={'uuid': uuid, 'vuln_id': vuln_id, 'author': author})
return r.json() return r.json()
def delete_bundle(self, bundle_uuid: str) -> int:
'''Delete a bundle.
:param bundle_uuid: The bundle UUID
'''
r = self.session.delete(urljoin(self.root_url, str(PurePosixPath('api', 'bundle', bundle_uuid))))
return r.status_code

4
tests/test_web.py
View file

@ -2,6 +2,7 @@
import unittest import unittest
import time import time
import os
from pyvulnerabilitylookup import PyVulnerabilityLookup from pyvulnerabilitylookup import PyVulnerabilityLookup
@ -9,7 +10,8 @@ from pyvulnerabilitylookup import PyVulnerabilityLookup
class TestPublic(unittest.TestCase): class TestPublic(unittest.TestCase):
def setUp(self) -> None: def setUp(self) -> None:
self.client = PyVulnerabilityLookup(root_url="https://vulnerability.circl.lu") token = os.getenv("API_KEY", "")
self.client = PyVulnerabilityLookup(root_url="https://vulnerability.circl.lu", token=token)
# Test default # Test default