vexctl/_servicedata at slfo-main - vexctl - openSUSE Gitea

pool/vexctl

SHA256

Files

Jeff Kowalczyk 033686fe65 New package vexctl version 0.3.0 is a CLI tool to create, apply, and attest VEX (Vulnerability Exploitability eXchange) data. Its purpose is to help with the creation and management of VEX documents that allow "turning off" security scanner alerts of vulnerabilities known not to affect a product.

VEX can be thought of as a "negative security advisory". Using VEX, software authors can communicate to their users that an otherwise vulnerable component has no security implications for their product.

OBS-URL: https://build.opensuse.org/package/show/devel:languages:go/vexctl?expand=0&rev=1

2024-11-20 05:29:55 +00:00

4 lines

235 B

Plaintext

Raw Permalink Blame History

 <servicedata>
 <service name="tar_scm">
                 <param name="url">https://github.com/openvex/vexctl.git</param>
               <param name="changesrevision">c613023a69ce990a54c25c2f5e69d5d78285927f</param></service></servicedata>