mise-server

Appearance

Vulnerability Scanning

mise-server fetches and indexes the OSV advisory database, cross-referencing cached packages against known vulnerabilities.

Configuration

toml
[settings]
osv_fetch = true              # enabled by default
osv_refresh_interval = 21600  # 6 hours (in seconds)
bash
export MISE_SERVER_OSV_FETCH=true
export MISE_SERVER_OSV_REFRESH_INTERVAL=21600

Supported Ecosystems

  • crates.io (Cargo)
  • Go
  • Maven
  • npm
  • NuGet
  • PyPI
  • RubyGems

How It Works

  1. On startup (and periodically), mise-server fetches the OSV advisory database
  2. Advisories are stored in the osv_advisories PostgreSQL table
  3. Cached packages are cross-referenced against advisories
  4. Results are available via the web dashboard and API

Disabling

Set osv_fetch = false to disable vulnerability scanning entirely.

Licensed under FSL-1.1-ALv2. Maintained by @jdx.

Copyright © 2026 @jdx