CVEProject/cve-services

Issues

• openapi.json links to deprecated github.io page

  #1304 opened 9 days ago by ElectricNroff
  0

• Standardizing all timestamp values for historical records to UTC

  #1291 opened a month ago by rbrittonMitre
  1

• Change API (and web site) behavior for RESERVED CVE IDs

  #1282 opened a month ago by zmanion
  3

• Flack

  #1283 opened 19 days ago by Flakorey01
  1

• v2.5.0 has inconsistent dataVersion across endpoints

  #1294 opened 22 days ago by ElectricNroff
  0

• Update PUT /org endpoint to set when an Org was last active

  #1258 opened 5 months ago by jdaigneau5
  1

• CVSS 3 score mismatch errors shown later than other errors

  #1209 opened 9 months ago by ElectricNroff
  1

• Cve

  #1293 opened a month ago by Jekyle
  0

• Discuss adding a user deletion endpoint

  #1238 opened 6 months ago by jdaigneau5
  1

• Standardize all timestamp values to UTC

  #1274 opened 3 months ago by jdaigneau5
  2

• Chinese Characters in URLs not allowed

  #1178 opened 10 months ago by marcruef
  1

• mention "CVE Record Format" in error messages?

  #1221 opened 8 months ago by ElectricNroff
  0

• PUT /cve/{id} should not unconditionally modify Cve-Id collection

  #1278 opened 3 months ago by ElectricNroff
  0

• superfluous if(org) code

  #1267 opened 4 months ago by ElectricNroff
  0

• minor loss of backward compatibility for arrays in 2.3.3

  #1266 opened 4 months ago by ElectricNroff
  0

• at f91d651, CNA loses data after PUT /org/:shortname/user/:username?org_short_name=

  #1187 opened 10 months ago by ElectricNroff
  0

• incorrect error message for active_roles.add[][a]=b

  #1173 opened a year ago by ElectricNroff
  0

• containsNoInvalidCharacters uses .includes on invalid data type

  #1172 opened a year ago by ElectricNroff
  0

• reserve IDs for year 2025?

  #1279 opened a month ago by ElectricNroff
  1

• Redirect should match new directory structure

  #1246 opened 4 months ago by M-nj
  0

• inconsistent JSDoc data for validateDescription

  #1257 opened 5 months ago by ElectricNroff
  0

• obsolete comments for validateDatePublic

  #1256 opened 5 months ago by ElectricNroff
  0

• validateDatePublic has anomalous usage

  #1251 opened 5 months ago by ElectricNroff
  0

• data suggests that new datePublic enforcement may have incompatibilities

  #1163 opened 5 months ago by ElectricNroff
  2

• triage test

  #1244 opened 5 months ago by jdaigneau5
  0

• triage test

  #1243 opened 5 months ago by jdaigneau5
  0

• Test

  #1241 opened 5 months ago by jdaigneau5
  0

• Update Swagger doc examples to include CVSS 4.0

  #1236 opened 7 months ago by jdaigneau5
  0

• CVE Record's `dataVersion` field does not update to reflect current schema version when updating a record

  #1226 opened 7 months ago by jdaigneau5
  1

• PUT /cve/:id/reject does not set dataVersion to 5.1

  #1230 opened 7 months ago by ElectricNroff
  1

• Assess and increase Cve-Services system scalability for ADP

  #1219 opened 7 months ago by jdaigneau5
  0

• stray files cna_container_schema.json and Reject_5.0_Schema.json?

  #1210 opened 7 months ago by ElectricNroff
  1

• incorrect use of create-cve-record-rejection-response.json

  #1165 opened a year ago by ElectricNroff
  0

• test_create_cve does not have a dataVersion 5.1.0 test

  #1207 opened 9 months ago by ElectricNroff
  0

• no test coverage of POST /org/:shortname/user with active_roles ?

  #1216 opened 9 months ago by ElectricNroff
  0

• CVE Records have 5.1 but schema says 5.1.0

  #1205 opened 9 months ago by ElectricNroff
  0

• validation fails because of rounding in anyOf/baseScore/baseSeverity

  #1204 opened 9 months ago by ElectricNroff
  2

• 2.3.0 datadump/pre-population/ has dataVersion 5.0

  #1206 opened 9 months ago by ElectricNroff
  0

• Update GET `/cve-id/{id}` and PUT `/cve-id/{id}` endpoints to redact `requested_by.user` fields not in `requested_by.org` organizations

  #1177 opened 9 months ago by jdaigneau5
  1

• Add response headers to swagger docs

  #1142 opened 9 months ago by jdaigneau5
  2

• Update POST/PUT /cve/:id to autofill dataVersion number

  #1180 opened 9 months ago by jdaigneau5
  0

• in production, CNA containers validated against wrong schema

  #1185 opened 10 months ago by ElectricNroff
  0

• stray cnaContainer.json file

  #1186 opened 10 months ago by ElectricNroff
  0

• Update GET /cve-id endpoint to redact `requested_by.user` values for users not in `requested_by.org` organizations

  #1176 opened 10 months ago by jdaigneau5
  0

• `docker/entrypoint.sh` line endings can be implicitly converted to CRLF by Git, breaking execution in Alpine.

  #1171 opened a year ago by alilleybrinker
  2

• 500 Internal Server Error for createUser with toString

  #1159 opened a year ago by ElectricNroff
  0

• JSON document from a client can redefine what toString() means on the server

  #1158 opened a year ago by ElectricNroff
  2

• two typos of dataVersion as dateVersion

  #1164 opened a year ago by ElectricNroff
  0

• 100 character limits for name fields not enforced

  #1157 opened a year ago by ElectricNroff
  1

• Determine if optional date fields should be validated

  #1141 opened a year ago by jdaigneau5
  2