alias: :security/nvd-scan & :security/nvd-fix library vulnerabilities scan and fix

Check the library dependencies of a project for security vulnerabilities against the NIST national vulnerabilities database

Resolve #87

Author: practicalli-johnny

CHANGELOG.org

@@ -11,6 +11,7 @@
 ** Added
 - dev: megalinter-upgrade task to upgrade config
 - dev: megalinter grafana dashboard connections via github organization secrets
+- alias: `:security/nvd-scan` and `:security/nvd-fix` library vulnerabilities scan and fix
 
 ** Updated
    - dev: update megalinter config to version 8

deps.edn

@@ -325,6 +325,23 @@
   ;; https://clojure.org/guides/tools_build
   ;; ---------------------------------------------------
 
+  ;; ---------------------------------------------------
+  ;; Security
+
+  ;; clj-holmes/clj-watson/
+  ;; Request an API key from: https://nvd.nist.gov/developers/request-an-api-key
+  ;; `CLJ_WATSON_NVD_API_KEY` set to API key value
+  :security/nvd-scan
+  {:replace-deps
+   {io.github.clj-holmes/clj-watson {:git/tag "v6.0.0" :git/sha "cb02879"}}
+   :main-opts ["-m" "clj-watson.cli" "scan" "-p" "./deps.edn"]}
+
+  :security/nvd-fix
+  {:replace-deps
+   {io.github.clj-holmes/clj-watson {:git/tag "v6.0.0" :git/sha "cb02879"}}
+   :main-opts ["-m" "clj-watson.cli" "scan" "-s" "-p" "deps.edn"]}
+  ;; ---------------------------------------------------
+
   ;; ---------------------------------------------------
   ;; Project Deployment