A Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC
yarn add cwe-sdk
Require the CweManager class and use its methods
const { CweManager } = require('cwe-sdk')
const { CweManager } = require('cwe-sdk')
const cweManager = new CweManager()
const result = cweManager.isChildOf({ weaknessId: '117', parentId: '116' })
console.log(result) // true
This CWE SDK has a build process that prepares the JSON data by downloading the latest version of the CWE archive (e.g. https://cwe.mitre.org/data/xml/cwec_v4.1.xml.zip) and then crunches it to create the following data snapshots:
./raw/cwe-archive.json./raw/cwe-dictionary.json./raw/cwe-hierarchy.jsonThis work is made possible thanks to scripts in ./build/
To run it, execute yarn run build
Please consult CONTRIBUTING for guidelines on contributing to this project.
cwe-sdk © Liran Tal, Released under the Apache-2.0 License.
FAQs
A Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC
We found that cwe-sdk demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Deno 2.2 enhances Node.js compatibility, improves dependency management, adds OpenTelemetry support, and expands linting and task automation for developers.
Security News
React's CRA deprecation announcement sparked community criticism over framework recommendations, leading to quick updates acknowledging build tools like Vite as valid alternatives.
Security News
Ransomware payment rates hit an all-time low in 2024 as law enforcement crackdowns, stronger defenses, and shifting policies make attacks riskier and less profitable.