vexctl

2 Commits 3 Branches 0 Tags

Author	SHA256	Message	Date
Ana Guerrero	29f250e2b9	Accepting request 1225194 from devel:languages:go New package vexctl version 0.3.0 is a CLI tool to create, apply, and attest VEX (Vulnerability Exploitability eXchange) data. Its purpose is to help with the creation and management of VEX documents that allow "turning off" security scanner alerts of vulnerabilities known not to affect a product. VEX can be thought of as a "negative security advisory". Using VEX, software authors can communicate to their users that an otherwise vulnerable component has no security implications for their product. OBS-URL: https://build.opensuse.org/request/show/1225194 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/vexctl?expand=0&rev=1	2024-11-20 16:00:13 +00:00
Jeff Kowalczyk	033686fe65	New package vexctl version 0.3.0 is a CLI tool to create, apply, and attest VEX (Vulnerability Exploitability eXchange) data. Its purpose is to help with the creation and management of VEX documents that allow "turning off" security scanner alerts of vulnerabilities known not to affect a product. VEX can be thought of as a "negative security advisory". Using VEX, software authors can communicate to their users that an otherwise vulnerable component has no security implications for their product. OBS-URL: https://build.opensuse.org/package/show/devel:languages:go/vexctl?expand=0&rev=1	2024-11-20 05:29:55 +00:00

Author

SHA256

Message

Date

Ana Guerrero

29f250e2b9

Accepting request 1225194 from devel:languages:go

New package vexctl version 0.3.0 is a CLI tool to create, apply, and attest VEX (Vulnerability Exploitability eXchange) data. Its purpose is to help with the creation and management of VEX documents that allow "turning off" security scanner alerts of vulnerabilities known not to affect a product.

VEX can be thought of as a "negative security advisory". Using VEX, software authors can communicate to their users that an otherwise vulnerable component has no security implications for their product.

OBS-URL: https://build.opensuse.org/request/show/1225194
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/vexctl?expand=0&rev=1

2024-11-20 16:00:13 +00:00

Jeff Kowalczyk

033686fe65

New package vexctl version 0.3.0 is a CLI tool to create, apply, and attest VEX (Vulnerability Exploitability eXchange) data. Its purpose is to help with the creation and management of VEX documents that allow "turning off" security scanner alerts of vulnerabilities known not to affect a product.

VEX can be thought of as a "negative security advisory". Using VEX, software authors can communicate to their users that an otherwise vulnerable component has no security implications for their product.

OBS-URL: https://build.opensuse.org/package/show/devel:languages:go/vexctl?expand=0&rev=1

2024-11-20 05:29:55 +00:00