vulnerability-lookup/PyVulnerabilityLookup
13
1
Fork 0
mirror of https://github.com/cve-search/PyVulnerabilityLookup.git synced 2024-11-25 16:27:23 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

Merge pull request #66 from cedricbonhomme/patch-cbo
Some checks are pending
Python application - MyPy / Python ${{ matrix.python-version }} sample (3.10) (push) Waiting to run
Details
Python application - MyPy / Python ${{ matrix.python-version }} sample (3.11) (push) Waiting to run
Details
Python application - MyPy / Python ${{ matrix.python-version }} sample (3.12) (push) Waiting to run
Details
Python application - MyPy / Python ${{ matrix.python-version }} sample (3.8) (push) Waiting to run
Details
Python application - MyPy / Python ${{ matrix.python-version }} sample (3.9) (push) Waiting to run
Details
Python application - Test Public Interface / Python ${{ matrix.python-version }} sample (3.10) (push) Waiting to run
Details
Python application - Test Public Interface / Python ${{ matrix.python-version }} sample (3.11) (push) Waiting to run
Details
Python application - Test Public Interface / Python ${{ matrix.python-version }} sample (3.12) (push) Waiting to run
Details
Python application - Test Public Interface / Python ${{ matrix.python-version }} sample (3.8) (push) Waiting to run
Details
Python application - Test Public Interface / Python ${{ matrix.python-version }} sample (3.9) (push) Waiting to run
Details

Browse source 
new: Added creation and deletion method for comments and bundles.
This commit is contained in:
Raphaël Vinot 2024-07-26 12:37:55 +02:00 committed by GitHub
commit b5eabfe119
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
2 changed files with 43 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

43
pyvulnerabilitylookup/api.py
View file

@ -4,7 +4,7 @@ from __future__ import annotations
from importlib.metadata import version
from pathlib import PurePosixPath
from typing import Any
from typing import Any, Dict
from urllib.parse import urljoin, urlparse
import requests
@ -12,7 +12,7 @@ import requests
class PyVulnerabilityLookup():
def __init__(self, root_url: str, useragent: str | None=None,
def __init__(self, root_url: str, useragent: str | None=None, token: str | None=None,
*, proxies: dict[str, str] | None=None) -> None:
'''Query a specific instance.
@ -28,6 +28,9 @@ class PyVulnerabilityLookup():
self.root_url += '/'
self.session = requests.session()
self.session.headers['user-agent'] = useragent if useragent else f'PyProject / {version("pyvulnerabilitylookup")}'
self.session.headers['X-API-KEY'] = token if token else ''
self.session.headers['Accept'] = 'application/json'
self.session.headers['Content-Type'] = 'application/json'
if proxies:
self.session.proxies.update(proxies)
@ -96,11 +99,20 @@ class PyVulnerabilityLookup():
# NOTE: endpoints /api/cve/*, /api/dbInfo, /api/last are alises for backward compat.
def create_comment(self, comment: Dict[str, Any]) -> Dict[str, Any]:
'''Create a comment.
:param comment: The comment
'''
r = self.session.post(urljoin(self.root_url, str(PurePosixPath('api', 'comment'))),
json=comment)
return r.json()
def get_comments(self, uuid: str | None = None, vuln_id: str | None = None,
author: str | None = None) -> dict[str, Any]:
'''Get comment(s)
:param uuid: The UUID a specific comment
:param uuid: The UUID of a specific comment
:param vuln_id: The vulnerability ID to get comments of
:param author: The author of the comment(s)
'''
@ -108,6 +120,23 @@ class PyVulnerabilityLookup():
params={'uuid': uuid, 'vuln_id': vuln_id, 'author': author})
return r.json()
def delete_comment(self, comment_uuid: str) -> int:
'''Delete a comment.
:param comment_uuid: The comment UUID
'''
r = self.session.delete(urljoin(self.root_url, str(PurePosixPath('api', 'comment', comment_uuid))))
return r.status_code
def create_bundle(self, bundle: Dict[str, Any]) -> Dict[str, Any]:
'''Create a bundle.
:param bundle: The bundle
'''
r = self.session.post(urljoin(self.root_url, str(PurePosixPath('api', 'bundle'))),
json=bundle)
return r.json()
def get_bundles(self, uuid: str | None = None, vuln_id: str | None = None,
author: str | None = None) -> dict[str, Any]:
'''Get bundle(s)
@ -119,3 +148,11 @@ class PyVulnerabilityLookup():
r = self.session.get(urljoin(self.root_url, str(PurePosixPath('api', 'bundle'))),
params={'uuid': uuid, 'vuln_id': vuln_id, 'author': author})
return r.json()
def delete_bundle(self, bundle_uuid: str) -> int:
'''Delete a bundle.
:param bundle_uuid: The bundle UUID
'''
r = self.session.delete(urljoin(self.root_url, str(PurePosixPath('api', 'bundle', bundle_uuid))))
return r.status_code

4
tests/test_web.py
View file

@ -2,6 +2,7 @@
import unittest
import time
import os
from pyvulnerabilitylookup import PyVulnerabilityLookup
@ -9,7 +10,8 @@ from pyvulnerabilitylookup import PyVulnerabilityLookup
class TestPublic(unittest.TestCase):
def setUp(self) -> None:
self.client = PyVulnerabilityLookup(root_url="https://vulnerability.circl.lu")
token = os.getenv("API_KEY", "")
self.client = PyVulnerabilityLookup(root_url="https://vulnerability.circl.lu", token=token)
# Test default