OWASP/cve-lite-cli

v1.5.0 Feature

This release adds 4 notable features for engineering teams evaluating rollout.

Published 1mo Vulnerability Scanning

✓ No known CVEs patched

✓ No known CVEs patched in this version

Topics

security cve javascript nodejs owasp security-tools

Summary

AI summary

Added structured table rendering, version‑scan metrics, automated upgrade tests, and expanded NestJS remediation case study.

Full changelog

lowest known non-vulnerable direct remediation target selection based on advisory-range validation across published versions
version-scan metrics for validated remediation targeting (scanned versions and still-vulnerable exclusions)
automated tests for multi-step upgrade chains, overlapping advisories, and fallback behavior when advisory coverage is incomplete
richer NestJS case-study evidence with remediation table metrics and screenshot-backed command snapshots

direct remediation output now uses structured table rendering with package/current/target/scanned/vulnerable columns
direct remediation tables now include a total row for consistent section-level summary in verbose output
compact output now includes validation-summary context when scanned-version metrics are available
README now explains the lowest-known-non-vulnerable targeting flow and references NestJS remediation evidence

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Track OWASP/cve-lite-cli

Get notified when new releases ship.

About OWASP/cve-lite-cli