admin/nuclei-templates
1
0
Fork 0
mirror of https://github.com/projectdiscovery/nuclei-templates.git synced 2026-01-31 15:53:33 +08:00
Code Issues Packages Projects Releases Wiki Activity
65,801 Commits 235 Branches 321 Tags
b43f4ec30643c9ea704d07a3d6967dfd027de05c
Commit Graph

985 Commits

Author SHA1 Message Date
dependabot[bot]
8dc1406c54 chore(deps): bump actions/setup-python from 5 to 6 
Bumps [actions/setup-python](https://github.com/actions/setup-python) from 5 to 6.
- [Release notes](https://github.com/actions/setup-python/releases)
- [Commits](https://github.com/actions/setup-python/compare/v5...v6)

---
updated-dependencies:
- dependency-name: actions/setup-python
  dependency-version: '6'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-12-22 05:03:54 +00:00
Prince Chaddha
ed562e5c00 refactor: change CVE enhancement to post-merge workflow 
Changed the CVE enhancement workflow to run after PRs are merged to main,
similar to other automation workflows (template-sign, checksum, etc).

Benefits:
- No permission issues with fork PRs
- Cleaner workflow logic
- Consistent with existing automation patterns
- Works for all PRs regardless of source

The workflow now:
- Triggers on push to main when CVE files change
- Detects changed CVE files from the last commit
- Enhances them with impact/remediation fields
- Commits changes back to main
 2025-12-16 14:57:46 +05:30
Prince Chaddha
4e41dde1fd fix: handle fork PRs in CVE enhancement workflow 
PRs from forks cannot be automatically updated by GitHub Actions due to
permission restrictions. This update:

1. Only attempts to commit/push changes for PRs from the same repository
2. For fork PRs, shows a helpful error message with the diff and
   instructions for the PR author to apply changes manually

This prevents the workflow from failing with a 403 error when trying
to push to forked repositories.
 2025-12-16 14:54:15 +05:30
Prince Chaddha
bdd5d8a0b5 fix: fetch enhancement script from base branch if missing in PR 
When PRs come from forks that were created before the enhance-cve-fields.py
script was added, the workflow fails because the script doesn't exist in
the PR branch. This fix checks if the script exists and fetches it from
the base branch if needed.

Fixes https://github.com/projectdiscovery/nuclei-templates/actions/runs/20262489530/job/58177646081
 2025-12-16 14:49:00 +05:30
Prince Chaddha
0abca2e182 Add CVE enhancement workflow 
Automatically adds missing impact and remediation fields to CVE templates using ProjectDiscovery API.

- Runs on PRs modifying CVE YAML files
- Fetches data from api.projectdiscovery.io
- Minimal dependencies (requests only)
- Commits directly to PR branch
 2025-12-15 18:11:36 +05:30
Luís Teles
25315c7c1d Update unavailable documentation URLs 2025-11-26 23:50:01 +00:00
Prince Chaddha
e8a4c9d462 Added KEV and vKEV stats - README.md 2025-11-24 22:03:56 +04:00
Prince Chaddha
a2f7dca3ed Add new assignees to autoassign workflow 2025-10-23 20:25:43 +05:30
Prince Chaddha
888b9ed5e5 Update autoassign.yml 2025-10-13 20:57:29 +05:30
Prince Chaddha
6725d40c6c Update autoassign.yml 2025-10-12 12:22:07 +05:30
Prince Chaddha
21eaf759b7 Update autoassign.yml 2025-10-08 15:34:43 +05:30
Prince Chaddha
908fe180a4 Create enhancement.yml 2025-10-05 17:35:29 +08:00
Prince Chaddha
14739abfcc Update autoassign.yml 2025-09-30 13:56:51 +08:00
Prince Chaddha
eec6f39c0a Update autoassign 2025-09-30 12:27:58 +08:00
dependabot[bot]
df0be21ccf chore(deps): bump actions/github-script from 7 to 8 
Bumps [actions/github-script](https://github.com/actions/github-script) from 7 to 8.
- [Release notes](https://github.com/actions/github-script/releases)
- [Commits](https://github.com/actions/github-script/compare/v7...v8)

---
updated-dependencies:
- dependency-name: actions/github-script
  dependency-version: '8'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-09-29 05:25:47 +00:00
Prince Chaddha
31995724fa Change lookback days from 30 to 15 
Reduced the lookback days for tie-break fairness metric from 30 to 15.
 2025-09-26 15:13:15 +08:00
Prince Chaddha
9a94bdccb7 Fixed vKEV workflow 2025-09-24 14:01:01 +08:00
Prince Chaddha
6664fbe61c updated autoassign 2025-09-23 11:57:46 +08:00
Prince Chaddha
3e394fa4b7 fix: update Go version to 1.24 in Windows job 2025-09-18 00:14:05 +08:00
Prince Chaddha
3ccd71dc1c Enhance KEV workflow with VulnCheck vKEV support 
- Replace KEV script with enhanced version supporting both CISA KEV and VulnCheck vKEV tags
- Add 371 missing vKEV tags for CVEs tracked by VulnCheck but not in CISA catalog
- Update workflow name and descriptions to reflect enhanced functionality
- Found 276 additional exploited vulnerabilities through VulnCheck data
- Maintain backward compatibility with existing KEV tags
 2025-09-17 08:45:16 +08:00
Dhiyaneshwaran
01d6c8dc80 Merge pull request #13134 from projectdiscovery/dependabot/github_actions/main/actions/github-script-8 
chore(deps): bump actions/github-script from 7 to 8
 2025-09-08 02:17:43 -07:00
Dhiyaneshwaran
1f0fbcdf28 Merge pull request #13135 from projectdiscovery/dependabot/github_actions/main/actions/setup-go-6 
chore(deps): bump actions/setup-go from 5 to 6
 2025-09-08 02:15:58 -07:00
dependabot[bot]
d72986d1e9 chore(deps): bump actions/setup-python from 5 to 6 
Bumps [actions/setup-python](https://github.com/actions/setup-python) from 5 to 6.
- [Release notes](https://github.com/actions/setup-python/releases)
- [Commits](https://github.com/actions/setup-python/compare/v5...v6)

---
updated-dependencies:
- dependency-name: actions/setup-python
  dependency-version: '6'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-09-08 05:05:30 +00:00
dependabot[bot]
032d0c552f chore(deps): bump actions/setup-go from 5 to 6 
Bumps [actions/setup-go](https://github.com/actions/setup-go) from 5 to 6.
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](https://github.com/actions/setup-go/compare/v5...v6)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-version: '6'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-09-08 05:05:24 +00:00
dependabot[bot]
36d81eb0a9 chore(deps): bump actions/github-script from 7 to 8 
Bumps [actions/github-script](https://github.com/actions/github-script) from 7 to 8.
- [Release notes](https://github.com/actions/github-script/releases)
- [Commits](https://github.com/actions/github-script/compare/v7...v8)

---
updated-dependencies:
- dependency-name: actions/github-script
  dependency-version: '8'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-09-08 05:05:21 +00:00
Prince Chaddha
896b3b79dc Fix KEV workflow to use tags field only (remove vKEV) 
- Removed all vKEV functionality as requested
- Fixed KEV script to only add 'kev' to tags field (not metadata)
- Simplified workflow to focus on CISA KEV catalog only
- Script now correctly adds/removes kev tags in tags field
- Removed VulnCheck API integration placeholder

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <noreply@anthropic.com>
 2025-08-27 12:40:47 +05:30
Prince Chaddha
32aa6850ce Add GitHub Actions workflow for daily KEV tag updates 
- Created kev-update.yml workflow that runs daily at 3:00 AM UTC
- Added update-kev.py script that fetches CISA KEV catalog
- Automatically adds kev tags and metadata to CVE templates in CISA KEV catalog
- Includes placeholder for VulnCheck KEV (vkev) integration
- Processes 1400+ CISA KEV entries and updates templates accordingly
- Includes safeguards to prevent removal of valid KEV tags

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <noreply@anthropic.com>
 2025-08-27 11:48:13 +05:30
Prince Chaddha
1ef048433c Add GitHub Actions workflow for daily EPSS score updates 
- Created epss-update.yml workflow that runs daily at 2:00 AM UTC
- Added update-epss.py script that fetches EPSS scores from FIRST API
- Automatically updates all CVE templates with latest EPSS scores and percentiles
- Includes rate limiting and error handling for API requests
- Processes over 3000+ CVE templates in batches

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <noreply@anthropic.com>
 2025-08-27 11:29:08 +05:30
dependabot[bot]
73b072eb95 chore(deps): bump actions/checkout from 4 to 5 (#12916) 
Bumps [actions/checkout](https://github.com/actions/checkout) from 4 to 5.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v4...v5)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: '5'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-08-24 15:16:02 +05:30
pussycat0x
18e2182a31 Merge pull request #12802 from projectdiscovery/update-readme-workflow 
fixed workflow to update other readme files
 2025-08-13 12:30:51 +07:00
Sandeep Singh
dec92ec6cd Update tests.yml 2025-08-13 03:42:40 +05:30
Prince Chaddha
92687f09ec added readme templates 2025-08-05 17:25:39 -07:00
Prince Chaddha
e64cca4a82 fixed workflow to update other readme files 2025-08-05 13:05:44 -07:00
Prince Chaddha
8874a7306b Update autoassign.yml 2025-06-20 19:39:08 +08:00
Dwi Siswanto
13c4fd4c0c chore: update PAT secret name (#12335) 
* chore: update PAT secret name

Signed-off-by: Dwi Siswanto <git@dw1.io>

* chore: rm template-db-indexer workflow

Signed-off-by: Dwi Siswanto <git@dw1.io>

---------

Signed-off-by: Dwi Siswanto <git@dw1.io>
 2025-06-13 19:56:29 +05:30
Dwi Siswanto
06a2069ee4 ci(new-templates): remove reusable sync job (#12229) 
Signed-off-by: Dwi Siswanto <git@dw1.io>
 2025-06-03 13:16:22 +05:30
Dwi Siswanto
c506f878b4 ci: remove templates-sync workflow (#12225) 2025-06-02 13:33:06 +05:30
Prince Chaddha
530fcd7e65 Update assign_tasks.py 2025-02-10 18:21:13 +05:30
Dwi Siswanto
3452beebf7 hotfix: missing input to setup nuclei in workflows 
Signed-off-by: Dwi Siswanto <git@dw1.io>
 2024-12-21 02:53:13 +07:00
dependabot[bot]
d045006ba2 chore(deps): bump actions/setup-go from 4 to 5 (#11280) 
Bumps [actions/setup-go](https://github.com/actions/setup-go) from 4 to 5.
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](https://github.com/actions/setup-go/compare/v4...v5)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-12-03 21:59:26 +05:30
Tarun Koyalwar
d0845c00af merge workflow and only resign windows templates 2024-12-01 19:24:28 +05:30
Tarun Koyalwar
d7f8e11b55 on demand windows resign 2024-12-01 18:52:08 +05:30
Tarun Koyalwar
0af4ea9c53 resign all with windows 2024-12-01 18:30:10 +05:30
Tarun Koyalwar
24100d8c3e update template sign workflow 2024-12-01 18:08:57 +05:30
sandeep
6c3e60e14c added GH token env 2024-11-06 03:15:46 +05:30
Dwi Siswanto
ca0a94df7f ci(tests): fix resource not accessible by integration 
by adding these permission:
* `issues: write`
* `pull-requests: write`

Signed-off-by: Dwi Siswanto <git@dw1.io>
 2024-11-04 13:31:56 +07:00
Parth Malhotra
5b05d6ed71 Update cve2json.yml 2024-10-03 22:35:05 +05:30
Dwi Siswanto
7e14fb092b chore: migrate issue templates to issue forms (#10853) 
* chore: migrate issue templates to issue forms

Signed-off-by: Dwi Siswanto <git@dw1.io>

* chore: remove feature_request issue template

Signed-off-by: Dwi Siswanto <git@dw1.io>

* chore: rm issue-report issue template

Signed-off-by: Dwi Siswanto <git@dw1.io>

* chore: make env attrs as optional

in false-{positive,negative} issue templates

Signed-off-by: Dwi Siswanto <git@dw1.io>

* chore: update labels for template-{contribution,requests}

Signed-off-by: Dwi Siswanto <git@dw1.io>

---------

Signed-off-by: Dwi Siswanto <git@dw1.io>
 2024-10-01 15:55:02 +07:00
Dwi Siswanto
a90f527c2e ci(new-templates): fix incorrect latest tag selection (#10846) 
Signed-off-by: Dwi Siswanto <git@dw1.io>
 2024-09-26 18:36:50 +07:00
Dhiyaneshwaran
c31dce6f3b Merge pull request #10654 from projectdiscovery/dwisiswant0/ci/new-templates/rm-pull-cmd 
ci(new-templates): rm `git pull` command
 2024-09-02 17:50:30 +05:30