cburgess
commented
2 years ago +1
Open cjnosal opened 3 years ago
cburgess
commented
2 years ago +1
cburgess
commented
2 years ago I will add that trivy has support for this.
spiffcs
commented
2 years ago 👋 Thanks for the issue @xtreme-conor-nosal. Apologies for the wait here, but we're currently working on a way for vulnerability sources easier for community members to add. While we don't have plans to add this support at this exact moment stay tuned for updates...
What would you like to be added: Support for identifying vulnerable packages in Photon OS
Why is this needed: To ensure photon-based containers are not vulnerable
Additional context: Syft support for Photon: https://github.com/anchore/syft/pull/341 CVE feed: https://packages.vmware.com/photon/photon_cve_metadata/