-
reported by @mjherzog
We should add data in CSAF format from https://github.com/cisagov/CSAF
Note:
- there may be several devices we may not care for in these data
- https://github.com/oas…
-
on latest master - after uploading (via ux) etc/test-data/csaf/* I see the following errors
```
2024-11-13T15:39:16.521222Z ERROR ThreadId(52) trustify_module_ingestor::service::advisory::csaf::l…
-
### What happened?
When I checked https://clouditor.io/.well-known/csaf/white/ I end up with a 404 where I should actually see a directory listing for the CSAF advisories (which would contain at leas…
-
While currently trying to implement Test 6.1.11 for kotlin-csaf (https://github.com/csaf-sbom/kotlin-csaf/issues/81) I was wondering, whether it would make sense to store a canonical version of the CW…
-
While testing the version `v.0.3.0-alpha-77-g1d37356`, I noticed a weird error message:
```
2024-10-14T20:55:43.844058+02:00 error storing "https://www.cisco.com/.well-known/csaf/2017/cisco-sa-201…
-
This is a follow-up to the discussion in https://github.com/csaf-sbom/kotlin-csaf/issues/80#issuecomment-2448675774. We make use of the TC test cases JSONs in testing the validation tests in kotlin-cs…
-
## Description
OVALv2 is in maintenance mode now.
https://www.redhat.com/en/blog/red-hat-vex-files-cves-are-now-generally-available
-
I am struggling to understand why https://github.com/oasis-tcs/csaf/blob/master/csaf_2.0/test/validator/data/mandatory/oasis_csaf_tc-csaf_2_0-2021-6-1-31-12.json is supposed to be valid. It contains t…
-
This entry is weird
https://public.vulnerablecode.io/packages/pkg:rpm/redhat/application-ui@container-v2.3%3Farch=6-9?search=pkg:rpm/redhat/application-ui@container-v2.3?arch=6-9
- The vulnerabili…
-
It might be helpful to be able to link a CSAF document to other systems, e.g. a Ticket system or an author system.