Skip to content

feat: add local vulnerability scanning scripts#154

Merged
vredchenko merged 2 commits intomainfrom
feature/local-vuln-scanning
Feb 5, 2026
Merged

feat: add local vulnerability scanning scripts#154
vredchenko merged 2 commits intomainfrom
feature/local-vuln-scanning

Conversation

@vredchenko
Copy link
Collaborator

@vredchenko vredchenko commented Jan 30, 2026
edited
Loading

Summary

Add local vulnerability scanning scripts for developer use.

Changes

  • scripts/osv-scan-repos.sh - Multi-language scanner using osv-scanner Go binary
  • scripts/pip-audit-scan-repos.sh - Python-only scanner using uvx pip-audit (no install needed)

Both scripts:

  • Scan all ERIC workspace repos by default
  • Support markdown output via -o flag
  • Include usage help via -h flag

Related

Implements first two tasks from #153

Test plan

  • Run ./scripts/osv-scan-repos.sh -h - verify help output
  • Run ./scripts/pip-audit-scan-repos.sh -h - verify help output
  • Run ./scripts/pip-audit-scan-repos.sh - verify scans Python repos
  • Run with -o results.md - verify markdown output

@vredchenko vredchenko added devops CI/CD, deployment, infrastructure, or tooling work security Security fixes, audits, or vulnerability remediation smartem-devtools Developer tooling, documentation, and workspace configuration labels Jan 30, 2026
@vredchenko
feat: add local vulnerability scanning scripts
125d8ed 
- osv-scan-repos.sh: multi-language scanner using osv-scanner Go binary
- pip-audit-scan-repos.sh: Python-only scanner using uvx pip-audit

Both scripts scan ERIC workspace repos by default and support
markdown output via -o flag.

Relates to #153
@vredchenko vredchenko force-pushed the feature/local-vuln-scanning branch from e4afd9f to 125d8ed Compare February 5, 2026 15:54
@vredchenko vredchenko marked this pull request as ready for review February 5, 2026 16:35
@vredchenko vredchenko merged commit c08b07d into main Feb 5, 2026
7 checks passed
@vredchenko vredchenko deleted the feature/local-vuln-scanning branch February 5, 2026 16:41
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

devops CI/CD, deployment, infrastructure, or tooling work security Security fixes, audits, or vulnerability remediation smartem-devtools Developer tooling, documentation, and workspace configuration

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@vredchenko