#security #advisory #vulnerability

csaf

An implementation of the Common Security Advisory Framework (CSAF)

5 unstable releases

new 0.5.0 May 8, 2023
0.4.0 Mar 11, 2023
0.3.2 Nov 10, 2021
0.3.1 Oct 10, 2021
0.3.0 Oct 10, 2021

#572 in Parser implementations

Download history 4/week @ 2023-01-21 6/week @ 2023-01-28 4/week @ 2023-02-04 6/week @ 2023-02-11 6/week @ 2023-02-18 1/week @ 2023-03-04 109/week @ 2023-03-11 59/week @ 2023-03-18 62/week @ 2023-03-25 51/week @ 2023-04-01 47/week @ 2023-04-08 62/week @ 2023-04-15 19/week @ 2023-04-22 138/week @ 2023-04-29 123/week @ 2023-05-06

351 downloads per month
Used in csaf-cli

MIT license

75KB
913 lines

Common Security Advisory Framework (CSAF)

Crates.io Crates.io docs.rs GitHub branch checks state

A lovingly hand-crafted1 implementation of CSAF for Rust. Currently, based on the v2.0 editor draft. Should be considered strictly less-strict than the spec right now - valid CSAF should deserialize successfully, but invalid CSAF may also succeed and the library may generate invalid CSAF.

My current use case is for experimenting with the VEX profile.

1 - CSAF defines a JSON Schema schema using Draft 2020-12. schemafy exists for generating Rust code from JSON Schema, but supports an older draft which differs significantly from the 2020-12 draft.

Dependencies

~6–14MB
~310K SLoC