Spinoff of CVEStack to be slack-centric. Scans feeds for various elements within the stack, then posts to a slack webhook. Supports a pip-style format. For instance, this file:
linux
wordpress
Will post to slack for any new (or recently updated) CVEs matching linux
or wordpress
.
You can use __
to determine left or right padding on a per-pattern basis. For instance, __py
would match ' testpy', but not 'testpy '. Similarly, py__
would match 'testpy ', but not ' testpy'.
You can also specify required combinations of keywords. For instance,
linux & kernel
will require that an entry contains both linux
and kernel
.
You can also set required keywords to be negative. For instance, this line will match entries for 'sql', but not if they also contain 'server':
sql & -server
The example config pulls from nvd and seclists. It posts to a nonexistent slack webhook by default.