ci: check access for purl2cpe database

intel / cve-bin-tool

The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 200 common, vulnerable components (openssl, libpng, libxml2, expat and others), or if you know the components used, you can get a list of known vulnerabilities associated with an SBOM or a list of components and versions.

https://cve-bin-tool.readthedocs.io/en/latest/

GNU General Public License v3.0

1.14k stars 444 forks source link

ci: check access for purl2cpe database #4216

Open terriko opened 1 week ago

terriko commented 1 week ago

We have enabled a few "firewall" style rules in github and we should make sure that if we need access to specific urls for purl2cpe downloads that those are added to the appropriate github actions.

pinging @inosmeet in case you've got time to get to this before I do.

inosmeet commented 3 hours ago

We're getting the purl2cpe database from github.com and it's already added, so I don't think we need to add anything else.