I have some questions about hosting the urls for the vulnerability scanning. Right now we are mirroring the “https://github.com/fleetdm/nvd/releases” and I am not sure to what depth I should put in as my FLEET_VULNERABILITIES_CPE_DATABASE_URL. The one file that we have there is “…/nvd/releases/download/80f3e7909fed710/cpe-80f3e7909fed710.sqlite.gz”
02/11/2022, 3:55 PM
that URL should be the full URL to download the cpe database, if it's defined, we use it directly
02/11/2022, 3:57 PM
So it would be that last one, that expands out to the full sqlite.gz? I was hoping to grab the files in the same manner fleet does from github, so I don’t have to go and update that url when that db changes.
02/11/2022, 4:09 PM
yeah, the problem is that we use github's API if we handle it, and otherwise assume it's something else entirely, so we rely on the user defining the paths
you can also use a proxy, alternatively
02/11/2022, 4:10 PM
No worries, I’m just trying to get things working and totally expect to run into problem. Thank you for answering my question!