-
Notifications
You must be signed in to change notification settings - Fork 1.2k
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Co-authored-by: Severin Neumann <[email protected]> Co-authored-by: Phillip Carter <[email protected]>
- Loading branch information
3 people
authored
Dec 10, 2023
1 parent
299ad7b
commit 95e83ad
Showing
3 changed files
with
86 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,4 @@ | ||
| --- | ||
| title: Security | ||
| weight: 150 | ||
| --- |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,74 @@ | ||
| --- | ||
| title: Common Vulnerabilities and Exposures | ||
| weight: 102 | ||
| --- | ||
|
|
||
| This is a list of reported Common Vulnerabilities and Exposures (CVEs) across | ||
| all repositories in the | ||
| [OpenTelemetry organization on GitHub](https://github.com/open-telemetry/). The | ||
| raw data is stored in the | ||
| [sig-security](https://github.com/open-telemetry/sig-security) repository, and | ||
| it is refreshed daily. | ||
|
|
||
| <table id="cve-table"> | ||
| <thead> | ||
| <tr> | ||
| <th>CVE ID</th> | ||
| <th>Issue Summary</th> | ||
| <th>Severity</th> | ||
| <th>Repository</th> | ||
| </tr> | ||
| </thead> | ||
| <tbody> | ||
| </tbody> | ||
| </table> | ||
|
|
||
| <script id="main-script"> | ||
| 'use strict'; | ||
| (function() { | ||
| function fetchAndRender() { | ||
| fetchData() | ||
| .then(renderTable); | ||
| } | ||
|
|
||
| function fetchData() { | ||
| var url = 'https://raw.githubusercontent.com/open-telemetry/sig-security/data-source/published_output.json'; | ||
| return fetch(url) | ||
| .then(function(response) { | ||
| return response.json(); | ||
| }); | ||
| } | ||
|
|
||
| function renderTable(data) { | ||
| var table = document.getElementById('cve-table').querySelector('tbody'); | ||
|
|
||
| data.sort((a, b) => new Date(b.created_at) - new Date(a.created_at)); | ||
|
|
||
| data.forEach(item => { | ||
| var row = table.insertRow(); | ||
|
|
||
| const cell1 = row.insertCell(0); | ||
| const link = document.createElement('a'); | ||
| link.href = item['html_url']; | ||
| link.target = '_blank'; | ||
| link.textContent = item['cve_id']; | ||
| cell1.appendChild(link); | ||
|
|
||
| const cell2 = row.insertCell(1); | ||
| cell2.textContent = item['summary']; | ||
| const cell3 = row.insertCell(2); | ||
| cell3.textContent = item['severity']; | ||
|
|
||
| const cell4 = row.insertCell(3); | ||
| // cell4.textContent = item['repo']; | ||
| const link2 = document.createElement('a'); | ||
| link2.href = 'https://www.github.com/open-telemetry/' + item['repo'] + '/security/advisories'; | ||
| link2.target = '_blank'; | ||
| link2.textContent = item['repo']; | ||
| cell4.appendChild(link2); | ||
| }); | ||
| } | ||
|
|
||
| fetchAndRender(); | ||
| })(); | ||
| </script> |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters