Package | Description |
---|---|
org.owasp.dependencycheck |
Includes the main entry point for dependency-check.
|
org.owasp.dependencycheck.analyzer |
Analyzers are used to inspect the identified dependencies, collect Evidence, and process the dependencies.
|
org.owasp.dependencycheck.data.nvdcve |
Contains classes used to work with the NVD CVE data.
|
org.owasp.dependencycheck.utils |
Includes various utility classes such as a Settings wrapper, a Checksum utility, etc.
|
Modifier and Type | Method and Description |
---|---|
boolean |
Engine.doUpdates()
Cycles through the cached web data sources and calls update on all of
them.
|
boolean |
Engine.doUpdates(boolean remainOpen)
Cycles through the cached web data sources and calls update on all of
them.
|
void |
Engine.openDatabase()
This method is only public for unit/integration testing.
|
void |
Engine.openDatabase(boolean readOnly,
boolean lockRequired)
This method is only public for unit/integration testing.
|
Modifier and Type | Method and Description |
---|---|
void |
NpmCPEAnalyzer.open(CveDB cve)
Opens the data source.
|
void |
CPEAnalyzer.open(CveDB cve)
Opens the data source.
|
Modifier and Type | Class and Description |
---|---|
class |
CorruptDatabaseException
An exception used to indicate the db4o database is corrupt.
|
Modifier and Type | Method and Description |
---|---|
java.sql.Connection |
DatabaseManager.getConnection()
Constructs a new database connection object per the database
configuration.
|
java.util.Set<Pair<java.lang.String,java.lang.String>> |
CveDB.getVendorProductList()
Returns the entire list of vendor/product combinations.
|
java.util.Set<Pair<java.lang.String,java.lang.String>> |
CveDB.getVendorProductListForNode()
Returns the entire list of vendor/product combinations filtered for just
Node JS related products.
|
java.util.List<Vulnerability> |
CveDB.getVulnerabilities(us.springett.parsers.cpe.Cpe cpe)
Retrieves the vulnerabilities associated with the specified CPE.
|
Vulnerability |
CveDB.getVulnerability(java.lang.String cve)
Gets a vulnerability for the provided CVE.
|
Vulnerability |
CveDB.getVulnerability(java.lang.String cve,
java.sql.Connection conn)
Gets a vulnerability for the provided CVE.
|
void |
CveDB.updateKnownExploitedVulnerabilities(java.util.List<Vulnerability> vulnerabilities)
Merges the list of known exploited vulnerabilities into the database.
|
Constructor and Description |
---|
CveDB(Settings settings)
Creates a new CveDB object and opens the database connection.
|
DatabaseManager(Settings settings)
Private constructor for this factory class; no instance is ever needed.
|
Modifier and Type | Method and Description |
---|---|
static int |
DBUtils.getGeneratedKey(java.sql.PreparedStatement statement)
Returns the generated integer primary key for a newly inserted row.
|
Copyright© 2012-21 Jeremy Long. All Rights Reserved.