stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 3 Releases Wiki Activity
Files
fa4a98dfef353e6065bb8daaa43c05943205fd49
git.stella-ops.org/docs/modules/concelier/operations/connectors/nvd.md
master 77ff029205 todays product advirories implemented
2026-01-16 23:30:47 +02:00

894 B
Raw Blame History

Concelier NVD Connector - Operations Runbook

Last updated: 2026-01-16

1. Overview

The NVD connector ingests CVE records and CVSS metadata from the NVD feed to enrich advisory observations.

2. Authentication

  • Requires an API key configured in concelier.yaml under sources.nvd.auth.

3. Configuration (concelier.yaml)

concelier:
  sources:
    nvd:
      baseUri: "<nvd-api-base>"
      auth:
        type: "api-key"
        header: "apiKey"
      maxDocumentsPerFetch: 20
      fetchTimeout: "00:00:45"
      requestDelay: "00:00:00"

4. Offline and air-gapped deployments

  • Mirror the NVD feed into the Offline Kit and repoint baseUri to the mirror.
  • Keep fetch ordering deterministic by maintaining stable paging settings.

5. Common failure modes

  • Missing/invalid API key.
  • Upstream rate limits.
  • Schema validation errors on malformed payloads.