OWASP/cve-lite-cli

v1.1.0 Feature

This release adds 3 notable features for engineering teams evaluating rollout.

Published 2mo Vulnerability Scanning

✓ No known CVEs patched

✓ No known CVEs patched in this version

Topics

security cve javascript nodejs owasp security-tools

Summary

AI summary

Added offline SQLite advisory database support and related CLI flags.

Full changelog

local SQLite advisory database foundation for offline advisory lookups
cve-lite advisories sync to download the official OSV npm dump and build the local advisory DB
offline scanning with --offline
explicit local advisory DB selection with --offline-db <path>
sync progress reporting during advisory DB download and ingest

CLI output now clearly reports when offline mode is enabled
CLI output now states when the local advisory DB is being used as the advisory source
README now makes the offline workflow, scheduled DB refreshes, and advisory freshness guidance more prominent

cve-lite advisories sync
cve-lite /path/to/project --offline

Or with an explicit DB path:

cve-lite advisories sync --output /path/to/advisories.db
cve-lite /path/to/project --offline-db /path/to/advisories.db

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Track OWASP/cve-lite-cli

Get notified when new releases ship.

About OWASP/cve-lite-cli