knqyf263
commented
2 years ago Is this still relevant?
Open MaineK00n opened 2 years ago
knqyf263
commented
2 years ago Is this still relevant?
MaineK00n
commented
2 years ago @knqyf263
Is this still relevant?
I would like to add a Vendor to distinguish between EPEL repository and others by Vendor when scanning in Trivy.
https://github.com/aquasecurity/trivy/pull/1800 https://docs.fedoraproject.org/en-US/epel/epel-faq/#how_can_i_find_out_if_a_package_is_from_epel
Use the Vendor to determine if it is an EPEL Repository. https://docs.fedoraproject.org/en-US/epel/epel-faq/#how_can_i_find_out_if_a_package_is_from_epel