You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
feat!(detector): detect windows with vuls2 (#2499)
* feat!(detector): detect windows with vuls2
* fix(microsoft): align vuls2 KB detection output with gost behavior
- Do not populate AffectedPackages for KB-only detections (keep nil)
- WindowsKBFixedIns now includes KB prefix (e.g. "KB5075899")
- KB IDs flow through separate kbIDs path instead of packStatuses
- Update walkCriteria to return kbIDs separately from pack statuses
- Fix build error from AcceptQueriesKB -> KB type rename
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
* feat(detector/vuls2): surface MSRC exploitability under Optional["exploit"]
vuls-data-update now extracts the advisory-level MSRC exploitability
assessment ("Publicly Disclosed:...;Exploited:...;Latest Software
Release:...;...") as the CVRF vulnerability's "exploitability" optional value.
Surface it as CveContent.Optional["exploit"], mirroring the legacy gost
Microsoft path (gost/microsoft.go: Optional["exploit"] = cve.ExploitStatus).
The Optional map is built by the new ecosystem-dispatched cveContentOptional
in vendor.go; only the Microsoft case adds "exploit", so the generic path and
non-Microsoft sources are unaffected.
Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
* refactor(detector): drop unused logOpts param from DetectPkgCves
logOpts became unused once Windows detection moved off gost to vuls2
(1e24818); vuls2.Detect does not take it. golangci-lint (revive
unused-parameter) flagged it. Remove the parameter and update the two
callers (detector.go, server/server.go).
Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
* chore(dependabot): drop github.com/vulsio/gost and go-exploitdb from gomod groups
gost is removed by this PR; go-exploitdb was removed earlier in #2517.
Neither is in go.mod anymore, so the `vuls` group patterns and the `others`
group exclude-patterns no longer match anything. Remove the stale entries.
Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
* test(detector/vuls2): add covered-based case to postConvert microsoft kb detection
The existing "microsoft kb detection" case only exercised the unapplied-based
evaluation path of the KB criterion (Accepts.KB.Unapplied=true). The
covered-based path (Accepts.KB.Covered=true) is the more common real-world
detection pattern: the host has applied KBs that produce a non-empty
CoveredKBs, and the criterion's fix-KB is not in that set so it is reported
as vulnerable.
Rename the existing case to "microsoft kb detection: unapplied" for parallel
clarity, and add a new "microsoft kb detection: covered" case that mirrors
the structure with Accepts.KB.Covered=true.
Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
---------
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Co-authored-by: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
0 commit comments