vexctl

vexctl is a CLI tool to create, apply, and attest VEX (Vulnerability Exploitability eXchange) data. Its purpose is to help with the creation and management of VEX documents that allow "turning off" security scanner alerts of vulnerabilities known not to affect a product.

VEX can be thought of as a "negative security advisory". Using VEX, software authors can communicate to their users that an otherwise vulnerable component has no security implications for their product.

Developed at devel:languages:go
2 derived packages
Derived Packages
devel:languages:go

openSUSE:Slowroll:Build:2
Cancel
Download package
Checkout Package
osc -A https://api.opensuse.org checkout openSUSE:Factory/vexctl && cd $_
Create Badge

Build Results

Refresh

Source Files

Filename	Size	Changed
_service	0000000701 701 Bytes	6 months ago
_servicedata	0000000235 235 Bytes	3 days ago
vendor.tar.gz	0012574246 12 MB	3 days ago
vexctl-0.4.1+git96.558125d.tar.gz	0000223762 219 KB	2 days ago
vexctl.changes	0000028124 27.5 KB	3 days ago
vexctl.spec	0000001867 1.82 KB	3 days ago

Comments 0

No comments available

Places

Actions on this page

vexctl

Edit Package vexctl

Source Files

Comments 0

Places