Skip to content

Add Vulnerability Scanning Feature and Documentation #19

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
csharpfritz merged 2 commits into from
Dec 6, 2025
Merged

Add Vulnerability Scanning Feature and Documentation #19

csharpfritz merged 2 commits into from
Dec 6, 2025

Conversation

@csharpfritz
Copy link
Contributor

@csharpfritz csharpfritz commented Dec 6, 2025
edited
Loading

  • Introduced a new feature for scanning NuGet packages for known vulnerabilities.
  • Added VulnerabilityScanner class to handle the scanning logic.
  • Implemented VulnerabilityAnalysisPlugin for integration with the CodeMedic analysis engine.
  • Created command vulnerabilities for users to execute vulnerability scans.
  • Enhanced ProjectInfo to store vulnerability metadata.
  • Updated RepositoryScanner to collect and report vulnerabilities in scanned projects.
  • Added detailed documentation for the vulnerability scanning feature, including usage examples and command reference.
  • Created scripts for running vulnerability scans on Windows and Unix-based systems.
  • Updated README and quick reference documentation to include vulnerability scanning commands.
  • Added unit test and integration tests for Vulnerability Plugin

Fixes #7

@csharpfritz
Add Vulnerability Scanning Feature and Documentation
4173fcf 
- Introduced a new feature for scanning NuGet packages for known vulnerabilities.
- Added `VulnerabilityScanner` class to handle the scanning logic.
- Implemented `VulnerabilityAnalysisPlugin` for integration with the CodeMedic analysis engine.
- Created command `vulnerabilities` for users to execute vulnerability scans.
- Enhanced `ProjectInfo` to store vulnerability metadata.
- Updated `RepositoryScanner` to collect and report vulnerabilities in scanned projects.
- Added detailed documentation for the vulnerability scanning feature, including usage examples and command reference.
- Created scripts for running vulnerability scans on Windows and Unix-based systems.
- Updated README and quick reference documentation to include vulnerability scanning commands.
@csharpfritz
feat: Add integration and unit tests for VulnerabilityAnalysisPlugin
eb13f7f
@csharpfritz csharpfritz merged commit 8ac818b into FritzAndFriends:main Dec 6, 2025
3 checks passed
@csharpfritz csharpfritz deleted the feature-vulnerability branch December 6, 2025 19:29
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Report vulnerabilities in package dependencies

1 participant

@csharpfritz