-
This is a request to update the CSAF Documentation Website to make it more intuitive.
-
During the review of #205 there were some comments regarding the definitions and explanations use in the `involvements` property:
---
@tolim stated in https://github.com/oasis-tcs/csaf/pull/205#…
-
In GitLab by @podhrmic on Aug 13, 2020, 14:41
aka *Controls Regression Tests*, *Baseline controller test*, *Control System Fuzzer*
# Assumptions
I am assuming that the user of our tool will use vari…
-
Given robust product identification is an important factor for consumers of Security Advisories (SAs) this proposal shall offer other optional properties to the Full Product Name type (`full_product_n…
-
In CVRF there was a informative comment:
> At the time of this writing, OID issuance by FIRST is still a work in progress, thus some samples are provided below, that use OIDs from other standard MIBs…
-
When offering an API everyone and her dog will set practical limits for security reasons on the length of strings and arrays.
I suggest we do not leave the consumers and producers alone in the rain…
-
In GitLab by @podhrmic on Aug 11, 2020, 14:02
-
### Introduction
While working with the proposed CSAF2.0 specification, it became apparent that several key pieces of information that Arista Networks provides to customers with regard to security ad…
-
The schema is missing a full regular expression to enforce CPE syntax. This issue should track suggestions and develop one / check existing ones.
A starting point could be figures 6-1 to 6-3 from [Co…
-
In GitLab by @bauer-matthews on Aug 19, 2020, 11:59