nudge-auto-updater
is a tool that leverages SOFA in combination with VulnCheck to detect new macOS updates, triage the severity of the CVEs fixed, and update your JSON Nudge configuration appropriately.
A VulnCheck API key is required to use this script - without it, CVE lookups can't be performed.
To get started with nudge-auto-updater, you should read the "Getting Started" page in the wiki.
Information about configuring nudge-auto-updater can be found in the configuration documentation. Examples are also provided.