Score Any CVSS Vector Offline - v3.1 and v4.0, Zero Dependencies
A new JavaScript library, @hailbytes/cvss-calc, allows users to score CVSS vectors offline without any dependencies. It supports both CVSS v3.1 and v4.0, making it suitable for integration into CI environments that lack internet access. The library is lightweight and can be easily implemented as a web component on any webpage.
- ▪The library is only 4 KB in size and requires no network calls.
- ▪Users can score CVSS vectors in just two lines of code.
- ▪It can be integrated into CI pipelines to manage vulnerabilities effectively.
Opening excerpt (first ~120 words) tap to expand
try { if(localStorage) { let currentUser = localStorage.getItem('current_user'); if (currentUser) { currentUser = JSON.parse(currentUser); if (currentUser.id === 3713414) { document.getElementById('article-show-container').classList.add('current-user-is-article-author'); } } } } catch (e) { console.error(e); } David McHale Posted on May 20 Score Any CVSS Vector Offline - v3.1 and v4.0, Zero Dependencies #security #webdev #javascript #opensource A 4 KB JavaScript library that parses and scores CVSS vectors with no network calls, no build step, and no third-party API. Use it in CI or drop a web component into any page. Every vuln management tool eventually needs to score a CVSS vector.
…
Excerpt limited to ~120 words for fair-use compliance. The full article is at DEV.to (Top).
Discussion
0 commentsMore from DEV.to (Top)
