vexctl

vexctl is a CLI tool to create, apply, and attest VEX (Vulnerability Exploitability eXchange) data. Its purpose is to help with the creation and management of VEX documents that allow "turning off" security scanner alerts of vulnerabilities known not to affect a product.

VEX can be thought of as a "negative security advisory". Using VEX, software authors can communicate to their users that an otherwise vulnerable component has no security implications for their product.

Developed at devel:languages:go
Sources inherited from project openSUSE:Factory
2 derived packages
Derived Packages
devel:languages:go

openSUSE:Slowroll:Build:2
Cancel
Download package
Checkout Package
osc -A https://api.opensuse.org checkout devel:LoongArch:Factory/vexctl && cd $_
Create Badge

Build Results
RPM Lint

Refresh

Source Files

Filename	Size	Changed
_service	0000000684 684 Bytes	11 days ago
_servicedata	0000000235 235 Bytes	11 days ago
vendor.tar.gz	0012050127 11.5 MB	11 days ago
vexctl-0.3.0+git133.ff97560.tar.gz	0000226778 221 KB	11 days ago
vexctl.changes	0000018541 18.1 KB	11 days ago
vexctl.spec	0000001851 1.81 KB	11 days ago

Comments 0

No comments available

Places

Actions on this page

vexctl

Edit Package vexctl

Source Files

Comments 0

Places