1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
|
package cmd
import (
"context"
"encoding/json"
"github.com/pablotron/cvez/datadir"
"github.com/pablotron/cvez/dbstore"
"github.com/spf13/cobra"
"github.com/rs/zerolog"
"github.com/rs/zerolog/log"
"os"
"strings"
"time"
)
// Build query string.
func getSearchQuery(args []string) string {
r := make([]string, len(args))
for i, v := range(args) {
r[i] = "\"" + strings.ReplaceAll(strings.ToLower(v), "\"", "\"\"") + "\""
}
return strings.Join(r, " AND ")
}
// Get database store.
func getDb() dbstore.DbStore {
// build database path
dbPath, err := datadir.Join("cvez.db")
if err != nil {
log.Error().Err(err).Msg("Join")
os.Exit(-1)
}
// open database
db, err := dbstore.Open(dbPath)
if err != nil {
log.Error().Err(err).Msg("Open")
os.Exit(-1)
}
return db
}
var searchCmd = &cobra.Command{
Use: "search",
Args: cobra.MinimumNArgs(1),
Short: "Search CVEs.",
Long: `Common Vulnerability Enumeration (CVE) search.`,
Run: func(cmd *cobra.Command, args []string) {
ctx := context.Background()
// set global logging options
zerolog.TimeFieldFormat = time.RFC3339
zerolog.SetGlobalLevel(zerolog.InfoLevel)
// search for CVEs
rows, err := getDb().CveSearch(ctx, getSearchQuery(args))
if err != nil {
log.Error().Err(err).Msg("CveSearch")
os.Exit(-1)
}
// search for CVEs, write result
e := json.NewEncoder(os.Stdout)
if err := e.Encode(rows); err != nil {
log.Error().Err(err).Msg("Encode")
}
},
}
func init() {
rootCmd.AddCommand(searchCmd)
}
|
