OSV

An advisor that retrieves vulnerability information from the Open Source Vulnerabilities database.

Description

An advice provider that obtains vulnerability information from Open Source Vulnerabilities.

Configuration

Example

Use the following syntax to configure this plugin globally as part of config.yml:

ort:
  advisor:
    advisors:
      OSV:
        options:
          serverUrl: "https://api.osv.dev"

Options

serverUrl

The base URL of the OSV REST API. If undefined, default is the production endpoint of the official OSV.dev API.