vexctl
https://github.com/openvex/vexctl
vexctl is a CLI tool to create, apply, and attest VEX (Vulnerability Exploitability eXchange) data. Its purpose is to help with the creation and management of VEX documents that allow "turning off" security scanner alerts of vulnerabilities known not to affect a product.
VEX can be thought of as a "negative security advisory". Using VEX, software authors can communicate to their users that an otherwise vulnerable component has no security implications for their product.
- Links to devel:languages:go / vexctl
- Download package
-
Checkout Package
osc -A https://api.opensuse.org checkout home:jfkw:branches:devel:languages:go/vexctl && cd $_
- Create Badge
Refresh
Refresh
Source Files (show merged sources derived from linked package)
Filename | Size | Changed |
---|---|---|
_link | 0000000126 126 Bytes | |
_service | 0000000684 684 Bytes | |
_servicedata | 0000000235 235 Bytes | |
vendor.tar.gz | 0012050127 11.5 MB | |
vexctl-0.3.0+git133.ff97560.tar.gz | 0000226778 221 KB | |
vexctl.changes | 0000018541 18.1 KB | |
vexctl.spec | 0000001851 1.81 KB |
Comments 0