Skip to content

Latest commit

 

History

History
35 lines (23 loc) · 1.12 KB

README.md

File metadata and controls

35 lines (23 loc) · 1.12 KB

CVEsniper

Warning

CVEsniper is currently under active development: false positives and breaking changes can happen. We highly appreciate any feedback and contributions!

CVEsniper is a Go-based tool designed to audit Go modules for known vulnerabilities. It fetches vulnerability data from Snyk's vulnerability database and compares it with the versions of the modules used in your project.

Installation

To install CVEsniper, you need to have Go installed on your machine. You can download it from here. Once Go is installed, you can install CVEsniper using the following command:

go install github.com/raefko/CVEsniper/cmd/CVEsniper@latest

Usage

CVEsniper <path_to_gomod_file>

You can enable verbose mode by using the --verbose flag:

CVEsniper --verbose <path_to_gomod_file>

Contributing

Contributions to CVEsniper are welcome! Please feel free to open an issue or submit a pull request if you have any improvements or bug fixes.

License

This project is licensed under the Apache License 2.0. See the LICENSE file for details.