AffectsEcosystem checks a vulnerabilities' ecosystem with the ecosystem passed in.

IsAffected checks a package for vulnerabilities.

KnownEcosystems returns the list of currently supported ecosystems.

MustCompile compiles a regex and caches it for later.

MustParse parses the version string based on the ecosystem and panics if it fails to parse.

Parse chooses the correct parser based on the ecosystem.

ParseSemverLikeVersion parses the string that is based on Semver patterns.

PURLToPackage converts a Package URL string to models.PackageInfo.

Constants for the different ecosystems.

Constants for the different ecosystems.

Constants for the different ecosystems.

Constants for the different ecosystems.

Constants for the different ecosystems.

Constants defining the different entities that can get credit.

Constants defining the different entities that can get credit.

Constants defining the different entities that can get credit.

Constants defining the different entities that can get credit.

nolint:gosec.

nolint:gosec.

nolint:gosec.

Constants defining the different entities that can get credit.

Constants defining the different entities that can get credit.

Constants defining the different entities that can get credit.

Constants for the different ecosystems.

Define the Ecosystem constants for all of the different packages.

Define the Ecosystem constants for all of the different packages.

Define the Ecosystem constants for all of the different packages.

Define the Ecosystem constants for all of the different packages.

Define the Ecosystem constants for all of the different packages.

Define the Ecosystem constants for all of the different packages.

Define the Ecosystem constants for all of the different packages.

Define the Ecosystem constants for all of the different packages.

Define the Ecosystem constants for all of the different packages.

Define the Ecosystem constants for all of the different packages.

Define the Ecosystem constants for all of the different packages.

Define the Ecosystem constants for all of the different packages.

Define the Ecosystem constants for all of the different packages.

Define the Ecosystem constants for all of the different packages.

Define the Ecosystem constants for all of the different packages.

Define the Ecosystem constants for all of the different packages.

Define the Ecosystem constants for all of the different packages.

Define the Ecosystem constants for all of the different packages.

Define the Ecosystem constants for all of the different packages.

Define the Ecosystem constants for all of the different packages.

Define the Ecosystem constants for all of the different packages.

Define the Ecosystem constants for all of the different packages.

Define the Ecosystem constants for all of the different packages.

Define the Ecosystem constants for all of the different packages.

Constants for the different ecosystems.

Constants for the different ecosystems.

Constants for the different ecosystems.

Constants for the different ecosystems.

Constants for the different ecosystems.

Constants for the different ecosystems.

Constants for the different ecosystems.

Constants defining the different range types.

Constants defining the different range types.

Constants defining the different range types.

Constants defining the different reference types.

Constants defining the different reference types.

Constants defining the different reference types.

Constants defining the different reference types.

Constants defining the different reference types.

Constants defining the different reference types.

Constants defining the different reference types.

Constants defining the different reference types.

Constants defining the different reference types.

Constants defining the different reference types.

Constants defining the CVSS V2 vs V3 format.

Constants defining the CVSS V2 vs V3 format.

Ecosystems defines a list of all the ecosystems.

ErrUnsupportedEcosystem defines the unsupported ecosystem error.

Affected describes an affected package version, meaning one instance that contains the vulnerability.

Credit gives credit for the discovery, confirmation, patch, or other events in the life cycle of a vulnerability.

DebianVersion defines the Debian Version String.

Event describes a single version that either: - Introduces a vulnerability: {"introduced": string} - Fixes a vulnerability: {"fixed": string} - Describes the last known affected version: {"last_affected": string} - Sets an upper limit on the range being described: {"limit": string} Event instances form part of a “timeline” of status changes for the affected package described by the Affected struct.

MavenVersion defines a maven version token.

NuGetVersion defines a Nuget Version String.

Package identifies the affected code library or command provided by the package.

PackageDetails defines the package name, version and ecosystem for a SBOM package.

PackageInfo defines Specific package information.

PackagistVersion defines a Packagist Version string.

PyPIVersion defines te PyPI Version string.

Range describes the affected range of given version for a specific package.

Reference links to additional information, advisories, issue tracker entries, and so on about the vulnerability itself.

RubyGemsVersion defines the Ruby Gem Version string.

SemverLikeVersion is a version that is _like_ a version as defined by the Semantic Version specification, except with potentially unlimited numeric components and a leading "v".

SemverVersion defines the Semver Version string.

Severity is used to describe the severity of a vulnerability for an affected package using one or more quantitative scoring methods.

Vulnerability is the core Open Source Vulnerability (OSV) data type.

Version deinfes the interface to the CompareStr func.

Components defines a list of IDs.

CreditType defines the person that gets credit for finding the CVE.

Ecosystem defines the type of language the package and vulnerabity belong to.

RangeType defines what type of range search should be used.

ReferenceType defines the backing evidence for the CVE.

SeverityType defines the CVSS format (V2 vs V3).

Vulnerabilities defines an array of Vulnerability.