search

MaibornWolff / SecObserve

SecObserve is an open source vulnerability management system for software development and cloud environments. It supports a variety of open source vulnerability scanners and integrates easily into CI/CD pipelines.
https://maibornwolff.github.io/SecObserve/
BSD 3-Clause "New" or "Revised" License
93 stars 7 forks source link

Depth of dependencies #1874

Closed StefanFl closed 2 weeks ago

StefanFl commented 2 months ago

Store minimum depth of dependency for components and make it searchable.

StefanFl commented 2 weeks ago

I am actually not sure it helps a lot, because dependency trees depend very much on how the SBOM is developed.