fluidasserts.helper.sca module

Software Composition Analysis helper.

async fluidasserts.helper.sca.get_vulns_vulndb_async(package_manager, path, package, version, retry)

Search vulnerabilities on given package_manager/package/version.

Parameters
  • package_manager (str) – Package manager.

  • package (str) – Package name.

  • version (str) – Package version.

Return type

tuple

fluidasserts.helper.sca.process_requirements(pkg_mgr, path, reqs, retry=True)

Return a dict mapping path to dependencies, versions and vulns.

Return type

tuple