Open digitalcoyote opened 3 months ago
Source CISA Vulnrichment is expected to fix the issue of vulnerability enrichment from NVD as an authorized data publisher.
Why should this source be considered? Easily available data can be fed into the vulnerability cache for offline use.
Should this source be checked by default? Yes, it should be checked as part of the cache
Would this be better in an independent package? No, it may even be prudent to include this in the NVD package since the two are closely related.
Source CISA Vulnrichment is expected to fix the issue of vulnerability enrichment from NVD as an authorized data publisher.
Why should this source be considered? Easily available data can be fed into the vulnerability cache for offline use.
Should this source be checked by default? Yes, it should be checked as part of the cache
Would this be better in an independent package? No, it may even be prudent to include this in the NVD package since the two are closely related.