added a method to pull down just mozilla cpes from a cve

2022-09-29 00:15:22 -05:00 · 2022-09-29 00:15:22 -05:00 · 47b51b2d87
commit 47b51b2d87
parent 278991912e
1 changed files with 9 additions and 0 deletions
--- a/tools/mozilla/security_advisory_scraper/mozilla_security_advisory_scraper.rb
+++ b/tools/mozilla/security_advisory_scraper/mozilla_security_advisory_scraper.rb
@ -135,6 +135,15 @@ class MozillaSecurityAdvisoryScraper
    cpes = json.dig('matchStrings').map {|match_strings| match_strings.dig('matches')}
  end

+  def get_mozilla_cpes_from_cve(cve_id)
+    cve_cpes = cve_cpes_from_nvd(cve_id)
+    cve_cpes.flat_map do |cpe_configuration|
+      cpe_configuration.select do |cpe_hash|
+        cpe_hash.dig('cpeName').start_with?('cpe:2.3:a:mozilla')
+      end
+    end.map {|cpe_h| cpe_h.dig('cpeName')}
+  end
+
  def product_name_to_cpe
    # todo: record cpe translation
    {