Merge pull request #3184 from CVEProject/dev

update search test with dev

Author: alinh-mitre

src/assets/data/CNAsList.json

@@ -7477,7 +7477,7 @@
         "email": [
           {
             "label": "Email",
-            "emailAddr": "cybersecurity@se.com"
+            "emailAddr": "cpcert@se.com"
           }
         ],
         "contact": [
@@ -9231,14 +9231,14 @@
   {
     "shortName": "vmware",
     "cnaID": "CNA-2016-0025",
-    "organizationName": "VMware",
+    "organizationName": "VMware by Broadcom",
     "scope": "VMware, Spring, and Cloud Foundry issues only",
     "contact": [
       {
         "email": [
           {
             "label": "Email",
-            "emailAddr": "security@vmware.com"
+            "emailAddr": "vmware.psirt@broadcom.com"
           }
         ],
         "contact": [],
@@ -9249,15 +9249,15 @@
       {
         "label": "Policy",
         "language": "",
-        "url": "https://www.vmware.com/support/policies/security_response.html"
+        "url": "https://www.broadcom.com/support/vmware-services/security-response"
       }
     ],
     "securityAdvisories": {
       "alerts": [],
       "advisories": [
         {
           "label": "Advisories",
-          "url": "https://www.vmware.com/security/advisories.html"
+          "url": "https://www.broadcom.com/support/vmware-security-advisories"
         }
       ]
     },

src/assets/data/events.json

@@ -1,11 +1,27 @@
 {
   "currentEvents": [
+    {
+      "id": 35,
+      "title": "CVE Artificial Intelligence Working Group (CVEAI WG) Meeting",
+      "location": "Virtual",
+      "description": "Focused on defining swim lanes for AI vulnerability disclosure within the CVE Program.",
+      "permission": "private",
+      "url": "/ProgramOrganization/WorkingGroups#CVEArtificialIntelligenceWorkingGroupCVEAIWG",
+      "date": {
+        "start": "2024-10-15",
+        "end": "2024-12-31",
+        "repeat": {
+          "day": "Monday",
+          "recurrence": "biweekly"
+        }
+      }
+    },
     {
       "id": 34,
       "displayOnHomepageOrder": 1,
       "title": "CVE Program Workshop – Autumn 2024",
       "location": "Virtual",
-      "description": "A collaborative virtual community event of CVE Partners focused on improving CVE.<br/><br/>Event Time: 10:00 AM to 2:00 PM EDT both days.<br/><br/>Workshop “save the date” announcement, with expected topics and other details, sent to partners on September 19, 2024.",
+      "description": "A collaborative virtual community event of CVE Partners focused on improving CVE.<br/><br/>Event Time: 10:00 AM to 2:00 PM EDT both days.<br/><br/>Please refer to the CNA partners email announcements for agenda topics, deadlines, and other workshop details.",
       "permission": "private",
       "url": "",
       "date": {
@@ -430,15 +446,15 @@
       "id": 3,
       "title": "CVE Outreach and Communications Working Group (OCWG) Meeting",
       "location": "Virtual",
-      "description": "Promote the CVE Program to achieve program adoption and coverage goals through increased community awareness. Each calendar year there are six meetings held on a Monday (UTC-08:00) and six meetings held on a Wednesday (UTC-12:00).",
+      "description": "Promote the CVE Program to achieve program adoption and coverage goals through increased community awareness.",
       "permission": "private",
       "url": "/ProgramOrganization/WorkingGroups#OutreachandCommunicationsWorkingGroupOCWG",
       "date": {
         "start": "2024-01-01",
         "end": "2024-12-31",
         "repeat": {
-          "day": "Monday or Wednesday alternating every other month",
-          "recurrence": "monthly"
+          "day": "Friday",
+          "recurrence": "weekly"
         }
       }
     },

src/assets/data/faqs.json

@@ -256,7 +256,7 @@
 				"questionText": "Are there CVE List data feeds",
 				"questionResponseParagraphs": [
 					"Yes, both internal and external feeds of CVE List content are available.",
-					"CVE Program:<ul><li><a href='https://twitter.com/CVEnew/' target='_blank'>Feed of newly published CVE Records</a>  @CVEnew Twitter</li><li><a href='https://github.com/CVEProject/cvelistV5' target='_blank'>CVE List downloads (updated hourly)</a> cvelistV5 repository on GitHub</li></ul>",
+					"CVE Program:<ul><li><a href='https://x.com/CVEnew' target='_blank'>Feed of newly published CVE Records</a>  @CVEnew on X</li><li><a href='https://github.com/CVEProject/cvelistV5' target='_blank'>CVE List downloads (updated hourly)</a> cvelistV5 repository on GitHub</li></ul>",
 					"External:<ul><li><a href='https://cassandra.cerias.purdue.edu/CVE_changes/' target='_blank'>CVE Change Logs</a> free tool from CERIAS/Purdue University that provides daily and monthly changes to CVE Records.</li></ul>"
 				]
 			},
@@ -272,9 +272,7 @@
 				"questionText": "How do I search the CVE List",
 				"questionResponseParagraphs": [
           "<b><i>Search Tips<i></b>",
-          "<ul><li>By CVE ID<ul><li>Must include only one CVE ID per search.</li><li>CVE ID must include all letters, numbers, and hyphens associated with the CVE ID, e.g., CVE-2024-12345678.</li><li>“CVE” may be entered as “cve”, “CVE”, or as a combination of uppercase and lowercase, as casing is ignored during search.</li></ul></li><li>By other keyword(s)<ul><li>Must contain only alphanumeric characters.</li><li>May contain one or more keywords, separated by a space.</li><li>Keywords may be entered in lowercase, uppercase, or a combination of both. Casing is ignored during search, e.g., Vulnerabilities, vulnerabilities, VULNERABILITIES.</li></ul></li></ul>",
-          "<strong>2. Other CVE List search options</strong>",
-					"<ul><li>Search by keyword(s) across <a href='https://github.com/CVEProject/cvelistV5' target='_blank'>ALL FIELDS of all CVE Records</a> in the cvelistV5 downloads repository using the main search box on GitHub.com.</li><li>Search by keyword(s) in the <a href='https://cve.mitre.org/cve/search_cve_list.html' target='_blank'>Description fields ONLY of all CVE Records</a> using the legacy search page on cve.mitre.org.</li></ul>"
+          "<ul><li>By CVE ID<ul><li>Must include only one CVE ID per search.</li><li>CVE ID must include all letters, numbers, and hyphens associated with the CVE ID, e.g., CVE-2024-12345678.</li><li>“CVE” may be entered as “cve”, “CVE”, or as a combination of uppercase and lowercase, as casing is ignored during search.</li></ul></li><li>By other keyword(s)<ul><li>Must contain only alphanumeric characters, e.g., letters or numbers.</li><li>May contain one or more keywords, separated by a space.</li><li>Keywords may be entered in lowercase, uppercase, or a combination of both. Casing is ignored during search, e.g., Vulnerabilities, vulnerabilities, VULNERABILITIES.</li></ul></li></ul>"
 				]
 			},
 			{

src/assets/data/navigation.json

@@ -201,6 +201,10 @@
             "anchorId": "CNAOrganizationOfPeersCOOP",
             "label": "CNA Organization of Peers (COOP)"
           },
+          "CVE Artificial Intelligence Working Group (CVEAI WG)": {
+            "anchorId": "CVEArtificialIntelligenceWorkingGroupCVEAIWG",
+            "label": "CVE Artificial Intelligence Working Group (CVEAI WG)"
+          },
           "Outreach and Communications Working Group (OCWG)": {
             "anchorId": "OutreachandCommunicationsWorkingGroupOCWG",
             "label": "Outreach and Communications Working Group (OCWG)"

src/assets/data/news.json

@@ -1,5 +1,43 @@
 {
   "currentNews": [
+    {
+      "id": 421,
+      "newsType": "news",
+      "title": "CVE Program Adds New “CVE Artificial Intelligence Working Group (CVEAI WG)”",
+      "urlKeywords": "New CVE Artificial Intelligence Working Group",
+      "date": "2024-10-15",
+      "description": [
+        {
+          "contentnewsType": "paragraph",
+          "content": "The CVE Program’s newest working group (WG), <a href='/ProgramOrganization/WorkingGroups#CVEArtificialIntelligenceWorkingGroupCVEAIWG'>CVE Artificial Intelligence</a> (CVEAI WG), is open to CVE community members such as <a href='/ProgramOrganization/CNAs'>CVE Numbering Authorities (CNAs)</a>, the <a href='/ProgramOrganization/Board'>CVE Board</a>, <a href='/ProgramOrganization/ADPs'>Authorized Data Publishers (ADPs)</a>, and participants from the <a href='/ResourcesSupport/Glossary?activeTerm=glossarySecretariat'>CVE Program Secretariat</a>; members of corporate vulnerability management programs and related standards, initiatives, and associations; and members of the AI community with expertise in AI and AI-related security concerns."
+        },
+        {
+          "contentnewsType": "paragraph",
+          "content": "The CVEAI WG will focus on: “determining what is a CVE-able vulnerability in AI technology. It is expected the CVEAI WG will produce documentation that defines how the CVE Program will address AI technologies moving forward. The CVEAI WG efforts are focused on defining swim lanes for AI vulnerability disclosure within CVE. This WG will discuss the concerns in defining what is within the responsibilities of the CVE Program. Because not all AI issues are appropriate for a CVE assignment, it will also try to define when other AI security-related initiatives are needed to address concerns outside the CVE Program.”"
+        },
+        {
+          "contentnewsType": "paragraph",
+          "content": "Read the <a href='/Resources/Roles/WorkingGroups/CVEAIWG/CVEAIWG-Charter.pdf' target='_blank'>CVEAI WG charter</a>."
+        }
+      ]
+    },
+    {
+      "id": 420,
+      "newsType": "news",
+      "title": "Minutes from CVE Board Teleconference Meeting on October 2 Now Available",
+      "urlKeywords": "CVE Board Minutes from October 2",
+      "date": "2024-10-15",
+      "description": [
+        {
+          "contentnewsType": "paragraph",
+          "content": "The <a href='/ProgramOrganization/Board'>CVE Board</a> held a teleconference meeting on October 2, 2024. Read the <a href='https://cve.mitre.org/community/board/meeting_summaries/02_October_2024.pdf' target='_blank'>meeting minutes summary</a>."
+        },
+        {
+          "contentnewsType": "paragraph",
+          "content": "The CVE Board is the organization responsible for the strategic direction, governance, operational structure, policies, and rules of the CVE Program. The Board includes members from numerous cybersecurity-related organizations including commercial security tool vendors, academia, research institutions, government departments and agencies, and other prominent security experts, as well as end-users of vulnerability information."
+        }
+      ]
+    },
     {
       "id": 419,
       "newsType": "blog",
@@ -32,6 +70,7 @@
     },
     {
       "id": 418,
+      "displayOnHomepageOrder": 0,
       "newsType": "news",
       "title": "Minutes from CVE Board Teleconference Meeting on September 18 Now Available",
       "urlKeywords": "CVE Board Minutes from September 18",

src/components/AdpVulnerabilityEnrichment.vue

@@ -5,7 +5,6 @@
         <slot></slot>
         <button class="button message-header-button"
           :style="{'background-color': '#162e51 !important', 'color': 'white !important'}"
-          @click="togglePanel"
           :aria-expanded="usecveRecordStore.accordionState[organizationId] ? 'true' : 'false'"
           :aria-controls="`${organizationId}-panel`"
         >

src/components/FooterModule.vue

@@ -48,14 +48,14 @@
             <font-awesome-icon :icon="['fab', 'medium']" aria-labelledby="mediumIcon" aria-hidden="false" focusable="false"/>
           </span></a>
           <div>
-            <a class="cve-social-media-icon-with-text" href="https://twitter.com/CVEnew/" target="_blank">
+            <a class="cve-social-media-icon-with-text" href="https://x.com/CVEnew" target="_blank">
               <span class="icon">
                 <p id="x-twitterNewIcon" class="is-hidden">x-twitter icon for @CVEnew</p>
                 <font-awesome-icon :icon="['fab', 'x-twitter']" aria-labelledby="x-twitterNewIcon" aria-hidden="false" focusable="false"/>
               </span>
               New CVE Records
             </a>
-            <a class="cve-social-media-icon-with-text" href="https://twitter.com/CVEannounce/" target="_blank">
+            <a class="cve-social-media-icon-with-text" href="https://x.com/CVEannounce" target="_blank">
               <span class="icon">
                 <p id="x-twitterAnnounceIcon" class="is-hidden">x-twitter icon for @CVEannounce</p>
                 <font-awesome-icon :icon="['fab', 'x-twitter']" aria-labelledby="x-twitterAnnounceIcon" aria-hidden="false" focusable="false"/>

src/components/PrimaryNavigation.vue

@@ -125,11 +125,13 @@
             <cveRecordSearch/>
           </div>
           <div class="navbar-item cve-secondary-navbar-item cve-keyword-search">
-            <span class="icon-text mr-2" style="font-size: 14px">
-              <router-link to="/ResourcesSupport/FAQs#pc_cve_list_basicssearch_cve" class="cve-dark-blue-text">
-                Access Search Tips
-              </router-link>
-            </span>
+            <div v-if="searchType">
+              <span class="icon-text mr-2" style="font-size: 14px">
+                <router-link to="/ResourcesSupport/FAQs#pc_cve_list_basicssearch_cve" class="cve-dark-blue-text">
+                  Access Search Tips
+                </router-link>
+              </span>
+            </div>
           </div>
         </div>
         <div class="navbar-end is-hidden-touch">
@@ -151,6 +153,8 @@
 
 <script>
 import cveRecordSearch from '@/components/cveRecordSearchModule.vue';
+import { useCveListSearchStore } from '@/stores/cveListSearch';
+import { mapState } from 'pinia'
 
 export default {
   components: { cveRecordSearch },
@@ -160,6 +164,9 @@ export default {
       required: true,
     },
   },
+  computed: {
+    ...mapState(useCveListSearchStore, ['searchType'])
+  },
   data() {
     return {
       isOpen: false,