I’ve been wanting to build a patch evaluation system in Ruby for a while now, and now my buddy is getting to do one at work (on the clock, no less). He’s doing his in C# though.

His current challenge is getting all the SANS analysis into his tool via XML. Anyone know if this exists anywhere?