Open smirgel opened 2 months ago
This looks like a bug. It's trying to look up vulnerability data from redhat and not finding it, (likely because the database didn't download). I think we're likely missing a check in output_engine/__init__.py
at line 851 as it lists above. Probably an easy fix as long as that's the only place the mistake was made!
You can probably temporarily work around it by telling cve-bin-tool to skip the REDHAT data source, though I hope we can get a fix in fairly quickly.
Thanks! I was able to get a successful scan by adding "--disable-data-source REDHAT".
Description
When running a scan on an installed piece of software I get "KeyError: 'REDHAT'":
To reproduce
Steps to reproduce the behaviour:
It is probably related to one of the components but it is hard to tell which one:
Version/platform info
Version of CVE-bin-tool( e.g. output of
cve-bin-tool --version
): 3.3 Installed from pypi. Operating system: Ubuntu 22.04 Python version: Python 3.12.2Anything else?