is_pkg_vulnerable

Search the OSV database, by package name and its respective ecosystem, to determine
if a vulnerability has ever been listed. If a package has been listed as impacted by
a vulnerability this may warrant further queries to investigate specific versions
that have been affected.

Connect, query, and operate on information available from the
'Open Source Vulnerability' database <https://osv.dev/>. Although 'CRAN'
has vulnerabilities listed, these are few compared to projects such as
'PyPI'. With tighter integration between 'R' and 'Python', having an
'R' specific package to access details about vulnerabilities from
various sources is a worthwhile enterprise.

Allen OBrien

rosv

Client to Access and Operate on the 'Open Source Vulnerability'
API

is_pkg_vulnerable function

<dl><dt>name</dt>
<dd>Character vector of package names.</dd>
<dt>ecosystem</dt>
<dd>Character vector of ecosystem(s) within which the package(s) exist.</dd>
<dt>...</dt>
<dd>Any other parameters to pass to nested functions.</dd></dl>

Arguments

Detect if package within ecosystem has reported vulnerabilities — is_pkg_vulnerable

<dl>

<dt>name</dt>
<dd>Character vector of package names.</dd>


<dt>ecosystem</dt>
<dd>Character vector of ecosystem(s) within which the package(s) exist.</dd>


<dt>...</dt>
<dd>Any other parameters to pass to nested functions.</dd>

</dl>

is_pkg_vulnerable: Detect if package within ecosystem has reported vulnerabilities

Description

Usage

Value

Arguments

Examples