-
For your awareness:
As the tools are not a PoC (even since the first release), the long overdue change was conducted: The repo https://github.com/csaf-poc/csaf_distribution moved to https://github.co…
-
## Description
csaf-poc/csaf_distribution has been moved to https://github.com/gocsaf/csaf. Our go.mod should be updated.
https://github.com/aquasecurity/trivy/blob/63dd3d65a32296eee529c41c41f3221e2…
-
**What would you like to be added**:
Update the repo reference, if applicable.
**Why is this needed**:
For your awareness:
As the tools are not a PoC (even since the first release), th…
-
For your awareness:
As the tools are not a PoC (even since the first release), the long overdue change was conducted: The repo https://github.com/csaf-poc/csaf_distribution moved to https://github.…
-
I saw that the packages mention `io.github.csaf.sbom.*`. However, If I remember correctly, we only own the namespace `io.github.csaf-sbom.*` as https://github.com/csaf was already taken.
What am I mi…
-
### Preflight Checklist
- [X] I agree to follow the [Code of Conduct](https://github.com/deckhouse/deckhouse/blob/main/CODE_OF_CONDUCT.md) that this project adheres to.
- [X] I have searched the [iss…
-
https://msrc.microsoft.com/csaf/provider-metadata.json
-
I'm not sure what the issue is, but fetching the CSAF entries from Microsoft fails in a weird way: [downloader.log](https://github.com/user-attachments/files/17816521/downloader.log)
```
{"time":"…
-
It might be of interest for you that BSI TR-03183-2 "SBOM" v2.0.0 was published along with community drafts of part 1 ("General Requirements") and part 3 ("Vulnerability Reports and Notifications"): h…
-
When trying to upload 296 files via UI we can see the following warning:
```
2024-11-21T13:34:19.509831Z WARN ThreadId(36) ingest:load:load:ingest_advisory:ingest_organization:get_organization_by…