Closed IgorTodorovskiIBM closed 1 month ago
We can then use jq to process the release using the project name + commitsha (present in the metadata.json) to report any vulnerabilities.
jq '.["gitdummy"][] | select(.commit_sha == "564d0252ca632e0264ed670534a51d18a689ef5d") | .CVEs' zopen_vulnerability.json
TODOs:
zopen audit
Closing, @KeplerBoyce will be continuing this effort
We can then use jq to process the release using the project name + commitsha (present in the metadata.json) to report any vulnerabilities.
TODOs:
zopen audit
script - https://github.com/ZOSOpenTools/meta/pull/713