feat: opt chaitin valuable

zema1 · Nov 1, 2024 · ab048cc · ab048cc
1 parent 5a60adf
commit ab048cc
Show file tree

Hide file tree

Showing 3 changed files with 22 additions and 1 deletion.
diff --git a/README.md b/README.md
@@ -9,7 +9,7 @@
 | 名称                         | 地址                                                                                              | 推送策略                                             |
 |----------------------------|-------------------------------------------------------------------------------------------------|--------------------------------------------------|
 | 阿里云漏洞库                     | https://avd.aliyun.com/high-risk/list                                                           | 等级为高危或严重                                         |
-| 长亭漏洞库                      | https://stack.chaitin.com/vuldb/index                                                           | 等级为高危或严重                                         |
+| 长亭漏洞库                      | https://stack.chaitin.com/vuldb/index                                                           | 等级为高危或严重**并且**标题含中文                              |
 | OSCS开源安全情报预警               | https://www.oscs1024.com/cm                                                                     | 等级为高危或严重**并且**包含 `预警` 标签                         |
 | 奇安信威胁情报中心                  | https://ti.qianxin.com/                                                                         | 等级为高危严重**并且**包含 `奇安信CERT验证` `POC公开` `技术细节公布`标签之一 |
 | 微步在线研究响应中心(公众号)            | https://x.threatbook.com/v5/vulIntelligence                                                     | 等级为高危或严重                                         |

diff --git a/grab/chaitin.go b/grab/chaitin.go
@@ -6,6 +6,7 @@ import (
 	"github.com/zema1/watchvuln/util"
 	"strings"
 	"time"
+	"unicode"
 
 	"github.com/imroc/req/v3"
 	"github.com/kataras/golog"
@@ -96,6 +97,10 @@ func (t *ChaitinCrawler) IsValuable(info *VulnInfo) bool {
 	if info.Severity != High && info.Severity != Critical {
 		return false
 	}
+
+	if !ContainsChinese(info.Title) {
+		return false
+	}
 	return true
 }
 
@@ -120,3 +125,12 @@ type ChaitinResp struct {
 	} `json:"data"`
 	Code int `json:"code"`
 }
+
+func ContainsChinese(s string) bool {
+	for _, r := range s {
+		if unicode.Is(unicode.Han, r) {
+			return true
+		}
+	}
+	return false
+}
diff --git a/grab/chaitin_test.go b/grab/chaitin_test.go
@@ -26,3 +26,10 @@ func TestChaitin(t *testing.T) {
 	}
 	assert.Equal(count, 45)
 }
+
+func TestChineseCharacter(t *testing.T) {
+	assert := require.New(t)
+	assert.False(ContainsChinese("hello"))
+	assert.False(ContainsChinese("CVE-2023-0101"))
+	assert.True(ContainsChinese("CyberPanel upgrademysqlstatus 远程命令执行漏洞"))
+}