Add options in zopen audit to remove or upgrade packages with vulnerabilities

ZOSOpenTools / meta

Meta repository to tie together the various underlying z/OS Open Source tools repositories here

https://zosopentools.github.io/meta/

Apache License 2.0

37 stars 25 forks source link

Add options in zopen audit to remove or upgrade packages with vulnerabilities #818

Open KeplerBoyce opened 5 days ago

KeplerBoyce commented 5 days ago

Add flags to zopen audit command to allow for removing all packages with vulnerabilities and upgrading all packages with vulnerabilities (if newer versions are available that resolve any vulnerabilities).

v1gnesh commented 4 days ago

How about a top level verb - zopen yank? For upgrading, it'll be the existing zopen upgrade/update. zopen audit --try-resolve could be a flag that shows what's up, and confirms again with Y/N on whether we want it to go ahead with an update.