Jekyll plugin to embed a shields-like badge for CVE IDs
Find a file
2022-02-01 11:39:10 +02:00
lib style changes 2022-02-01 11:39:10 +02:00
.gitignore initial commit 2021-09-14 12:23:36 +03:00
Gemfile initial commit 2021-09-14 12:23:36 +03:00
jekyll-cve-badge.gemspec initial commit 2021-09-14 12:23:36 +03:00
LICENSE.txt initial commit 2021-09-14 12:23:36 +03:00
Rakefile initial commit 2021-09-14 12:23:36 +03:00
README.md update readme with gem info 2021-09-14 15:21:46 +00:00

Jekyll CVE badge

Generates a shields-like badge for a specified CVE. Automatically fetches the CVSS score from NVD and generates the badge accordingly.

2021-09-14-14-29-21

It uses CVSSv3 by default. If the CVE is old and a CVSSv3 is not available, CVSSv2 will be used. The badge itself links to the corresponding page on NVD.

Installation and usage

Add the following to your Gemfile's jekyll_plugins group:

gem "jekyll-cve-badge"

Run bundler install. This will install the plugin from the RubyGems repository.

You can then use the tag cve_badge anywhere. For example:

{% cve_badge "CVE-2021-31698" %}

Notes

  • NVD's API is slow, so posts will take quite a lot longer to generate. Not much I can do here
  • Add a cve-badge.html in your _layouts directory for custom styling. The layout is passed the params cve_id, cve_severity, and cve_score

TODO

  • Add flag to just add the badge with no CVSS rating