kubernetes
/
minikube
mirror of https://github.com/kubernetes/minikube.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
minikube/.openvex/templates
History
Sonu Kumar Singh 5ff727ce6b Initialize the VEX feed 
Co-Authored-By: Sandipan Panda <87253083+sandipanpanda@users.noreply.github.com>
Co-Authored-By: prnvkv <30334952+prnvkv@users.noreply.github.com>
 		2023-12-15 23:48:14 +05:30
..
README.md Initialize the VEX feed 2023-12-15 23:48:14 +05:30
main.openvex.json Initialize the VEX feed 2023-12-15 23:48:14 +05:30

README.md

OpenVEX Templates Directory

This directory contains the OpenVEX data for this repository. The files stored in this directory are used as templates by vexctl generate when generating VEX data for a release or a specific artifact.

To add new statements to publish data about a vulnerability, download vexctl and append new statements using vexctl add. For example:

vexctl add --in-place main.openvex.json pkg:oci/test CVE-2014-1234567 fixed

That will add a new VEX statement expressing that the impact of CVE-2014-1234567 is under investigation in the test image. When cutting a new release, for pkg:oci/test the new file will be incorporated to the relase's VEX data.

Read more about OpenVEX

To know more about generating, publishing and using VEX data in your project, please check out the vexctl repository and documentation: https://github.com/openvex/vexctl

OpenVEX also has an examples repository with samples and docs: https://github.com/openvex/examples