Conversation
Adds retail-specific CVE database covering 4 categories: - POS Systems: Oracle Xstore, NCR Aloha, Toshiba TCx, Verifone POS (8 CVEs) - Stock Management: SAP Retail, MS Dynamics, Oracle Retail, JDA (8 CVEs) - Payment Terminals: Verifone VX520/P400, Ingenico iCT250, PAX S920 (8 CVEs) - Retail Platforms: Shopify, Square, Lightspeed, Revel POS (8 CVEs) Each CVE includes CVSS v3.1 score, MITRE ATT&CK mapping, affected version ranges, patch status, exploit availability, and full vector string. https://claude.ai/code/session_01KFqx53RyCYkv6UCCqLEy4A
Python script that scans 18 simulated retail assets across 4 categories against the retail CVE database. Supports: - --mode quick (POS + terminals) / deep (all 4 categories, default) - --output text (human-readable report) / json (machine-readable) - --dry-run (first 3 findings to console, no file written) - --out-file (custom JSON output path) No third-party dependencies. Outputs CVSS scores, severity breakdown, MITRE ATT&CK mappings, patch status, and public exploit flags. https://claude.ai/code/session_01KFqx53RyCYkv6UCCqLEy4A
Adds full documentation for cve_scanner.py and cve_database.json: - Usage examples for all flags and modes - CVE database field reference table - Coverage matrix (4 categories × 8 CVEs each) - Sample text and JSON output https://claude.ai/code/session_01KFqx53RyCYkv6UCCqLEy4A
Adds a full-width Vulnerability Scanner section below the MITRE coverage panel. Features: - 32 pre-populated CVE findings across 18 retail assets (8C/22H/4M) - Severity badges (Critical/High/Medium/Low) with live counts - Scrollable CVE table: asset ID, CVE ID, CVSS score, description, product, version, severity, patch status, EXPLOIT flag - RUN VULNERABILITY SCAN button with animated blue progress bar - Scanning overlay with percentage counter during simulated scan - Footer stats: assets scanned, total CVEs, patch available, public exploits - scanPulse CSS animation; matches existing dark theme design tokens https://claude.ai/code/session_01KFqx53RyCYkv6UCCqLEy4A
|
The latest updates on your projects. Learn more about Vercel for GitHub.
|
…efing panel - detection-rules/pos_anomaly.kql — T1056.001 POS RAM scraping (4 signals) - detection-rules/ai_voice_fraud.kql — T1598 AI deepfake voice fraud (4 signals) - detection-rules/supply_chain_anomaly.kql — T1195 supply chain compromise (4 signals) - tests/detection-rules/test_kql_rules.py — 84 tests total, all passing - docs/mitre-mapping.md — all 8 techniques done + PCI DSS v4.0 alignment table - frontend/api/brief.js — Vercel /api/brief endpoint (Claude AI executive briefing) - frontend/src/RetailShield.jsx — PCI DSS Compliance Scorecard + AI Briefing panel
- tests/detection-rules/test_kql_rules.py — 84 tests across 5 rule classes - frontend/src/RetailShield.jsx — PCI DSS Compliance Scorecard panel + AI Executive Briefing panel
…; fix flake8 E501 - validate_kql.py: RetailShield_Logs_CL and AzureDiagnostics now recognised as valid Sentinel tables - cve_scanner.py: shorten line 137 to stay within 100-char flake8 limit - RetailShield.jsx: PCI DSS Compliance Scorecard + AI Executive Briefing panels
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Adds Phase 1 of the RetailShield v2.0 Vulnerability Management module — a retail-specific CVE scanner that identifies known vulnerabilities in POS systems, payment terminals, stock management platforms, and retail applications before attackers exploit them.
Changes
scripts/cve_database.json— 32 retail-specific CVEsscripts/cve_scanner.py— Retail infrastructure scanner--mode quick(POS + terminals) /--mode deep(all 4 categories, default)--output text(colour-coded terminal report) /--output json(machine-readable)--dry-run(console preview, no file written)scripts/README.md— Scanner documentationfrontend/src/RetailShield.jsx— Vulnerability Scanner panelGitHub Issues
Closes #23 (cve_scanner.py) · Closes #24 (cve_database.json) · Closes #25 (frontend panel) · Closes #26 (documentation)
Open for future work: #27 (JSON integration) · #28 (unit tests)
Milestone
v2.0 - Vulnerability Management
https://claude.ai/code/session_01KFqx53RyCYkv6UCCqLEy4A
Generated by Claude Code