RedHatProductSecurity security-data-guidelines issues

RedHatProductSecurity / security-data-guidelines

A set of documents detailing Red Hat's publishing of security data.

https://redhatproductsecurity.github.io/security-data-guidelines/

MIT License

1 stars 1 forks source link

issues

Newest

Newest Most commented Recently updated Oldest Least commented Least recently updated

Add (shallow) product SBOM example using CycloneDX

#38 mprpic closed 1 week ago
1
Tweak datetime format to use what Python spits out

#37 mprpic closed 1 week ago
0
Add better complete SBOM definitions

#36 mprpic closed 2 weeks ago
0
remove other relationship from syft generated rpm sboms

#35 jasinner closed 1 week ago
6
Clarify SBOM type for release-time SBOMs

#34 mprpic closed 1 month ago
1
Fix title

#33 oaubrey closed 1 month ago
0
Csaf vex guidelines

#32 oaubrey closed 1 month ago
2
Add sigmd5 checksum to RPM examples

#31 mprpic closed 1 month ago
0
Fix unescaped colons in version string of container image purls

#30 mprpic closed 1 month ago
0
Csaf vex guidelines

#29 oaubrey closed 1 month ago
1
What relation type should be buildroot rpms?

#28 tkopecek opened 1 month ago
10
RPM checksums

#27 tkopecek closed 1 month ago
1
Make placeholder values for checksums stable

#26 twaugh closed 2 months ago
0
Fixed for build-time container image SBOMs

#25 twaugh opened 2 months ago
0
Fix direction of image index relationships

#24 twaugh closed 2 months ago
1
Add parent images for containers

#23 twaugh closed 1 month ago
3
Update to new security data domain

#22 mprpic closed 2 months ago
0
Fix document-level SPDX identifiers

#21 twaugh closed 2 months ago
5
Add SBOM guidelines

#20 mprpic closed 1 month ago
1
Bump deps to resolve dependabot alerts

#19 mprpic closed 2 months ago
0
Add container build SBOM example

#18 mprpic closed 2 months ago
0
Add examples of release-time RPM SBOMs

#17 mprpic closed 2 months ago
0
Add helper tooling

#16 mprpic closed 2 months ago
0
Use consistent documentNamespace for component-level SBOMs

#15 mprpic closed 2 months ago
0
Fixes for container image SBOMs

#14 twaugh closed 2 months ago
0
Use VARIANT_OF to describe image index relationship

#13 twaugh closed 2 months ago
0
Don't exclude debuginfo RPM packages

#12 twaugh closed 2 months ago
0
Fix rpm purls in the RPM examples

#11 twaugh closed 2 months ago
4
Add RPM checksums in purls

#10 mprpic closed 2 months ago
0
Improve RPM purl guidelines

#9 mprpic closed 3 months ago
0
Some updates to maven purl recommendations

#8 twaugh closed 3 months ago
0
Add missing repo name in oci purl examples

#7 mprpic closed 3 months ago
1
Add example product SBOM

#6 twaugh closed 3 months ago
1
Example product-level SBOM

#5 mprpic closed 3 months ago
1
Use SBOM file naming conventions

#4 mprpic closed 4 months ago
0
Add container image sbom example generator

#3 mprpic closed 3 months ago
3
Add documentation around identifying Red Hat components using purl

#2 mprpic closed 5 months ago
1
Script to generate example SBOM data from a Koji RPM build

#1 twaugh closed 5 months ago
8