Skip to content

harvard-lts/dependabot-vulnerabilities

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
.gitignore
.gitignore
 
 
README.md
README.md
 
 
dependabot_vulnerabilities.py
dependabot_vulnerabilities.py
 
 
env-example
env-example
 
 
requirements.txt
requirements.txt
 
 

Repository files navigation

Dependabot Vulnerabilities

This script reads the critical and high dependabot vulnerabilities from all repositories in the provided Github organization and prints a CSV formatted result to the console. By default, the tool reports on vulnerabilities found in the https://github.com/harvard-lts Github org. By passing in the --huit command-line argument, the tool reports on vulnerabilities found in the https://github.huit.harvard.edu/LTS enterprise Github org.

Usage

Setup

python3.11 -m venv myenv
source myenv/bin/activate
pip install -r requirements.txt

Credentials

Populate with:

  • Github Token: PAT (Personal Access Token)
    • github.com, fine-grained (Read access to Dependabot alerts, administration, and metadata)
    • Enterprise github, classic (repo:all, admin:read:org, admin:read:enterprise)
  • API URL for repos: provided
  • API URL for dependabot alerts: provided
  • API URL for repo properties: provided
cp env-example .env
vi .env

Execution

source myenv/bin/activate

# harvard-lts
python dependabot_vulnerabilities.py > 2025-01-06-lts.csv

# HUIT
python dependabot_vulnerabilities.py --huit > 2025-01-06-huit.csv

About

No description, website, or topics provided.

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages