add audit command for check installed packages against known vulnerabilities

2a0e681d · Vitaly Lipatov · 6a217f2e · 2a0e681d · 2a0e681d
Commit 2a0e681d authored Jun 03, 2014 by Vitaly Lipatov
Hide whitespace changes
Inline Side-by-side

Showing with 34 additions and 0 deletions

epm bin/epm +3 -0

epm-audit bin/epm-audit +31 -0

No files found.
--- a/bin/epm
+++ b/bin/epm
@@ -241,6 +241,9 @@ check_command()
    simulate)                 # HELPCMD: simulate install with check requires
        epm_cmd=simulate
        ;;
+    audit)                    # HELPCMD: audits installed packages against known vulnerabilities
+        epm_cmd=audit
+        ;;
    -V|checkpkg|integrity)    # HELPCMD: check package file integrity (checksum)
        epm_cmd=checkpkg
        ;;

--- a/bin/epm-audit
+++ b/bin/epm-audit
+#!/bin/sh
+#
+# Copyright (C) 2014  Etersoft
+# Copyright (C) 2014  Vitaly Lipatov <lav@etersoft.ru>
+#
+# This program is free software: you can redistribute it and/or modify
+# it under the terms of the GNU Affero General Public License as published by
+# the Free Software Foundation, either version 3 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU Affero General Public License for more details.
+#
+# You should have received a copy of the GNU Affero General Public License
+# along with this program. If not, see <http://www.gnu.org/licenses/>.
+#
+
+epm_audit()
+{
+case $PMTYPE in
+	pkgng)
+		sudocmd pkg audit -F
+		;;
+	*)
+		fatal "Have no suitable command for $PMTYPE"
+		;;
+esac
+
+}