Miscellaneous
Continuous periodic Data import
If you want to run the import periodically, you can use a systemd timer. Here is an example:
$ cat ~/.config/systemd/user/vulnerablecode.service
[Unit]
Description=Run VulnerableCode importers
[Service]
Type=oneshot
ExecStart=/path/to/venv/bin/python /path/to/vulnerablecode/manage.py import --all && /path/to/venv/bin/python /path/to/vulnerablecode/manage.py improve --all
$ cat ~/.config/systemd/user/vulnerablecode.timer
[Unit]
Description=Periodically run VulnerableCode importers
[Timer]
OnCalendar=daily
[Install]
WantedBy=multi-user.target
Start this timer with:
systemctl --user daemon-reload
systemctl --user start vulnerablecode.timer
Environment variables configuration
VulnerableCode loads environment variables from an .env file when provided. VulnerableCode first checks the file at /etc/vulnerablecode/.env and if not present, it will attempt to load a .env file from the checkout directory.
The file at /etc/vulnerablecode/.env has precedence.
Throttling rate configuration
The default throttling settings are defined in settings.py
.
To override the default settings, add env variables in .env
file
define the settings there. For example:
VULNERABLECODE_ALL_VULNERABLE_PACKAGES_THROTTLING_RATE = '1000/hour'
VULNERABLECODE_BULK_SEARCH_PACKAGE_THROTTLING_RATE = '10/minute'
VULNERABLECODE_PACKAGES_SEARCH_THROTTLING_RATE = '1000/second'
VULNERABLECODE_VULNERABILITIES_SEARCH_THROTTLING_RATE = '1000/hour'
VULNERABLECODE_ALIASES_SEARCH_THROTTLING_RATE = '1000/hour'
VULNERABLECODE_CPE_SEARCH_THROTTLING_RATE = '10/minute'
VULNERABLECODE_BULK_SEARCH_CPE_THROTTLING_RATE = '10/minute'