Skip to content

Commit

Permalink
add VEX file with vulnerabilities information to SBOM
Browse files Browse the repository at this point in the history
  • Loading branch information
dfucci committed Oct 16, 2024
1 parent 2b15bc5 commit b2b5c41
Showing 1 changed file with 70 additions and 0 deletions.
70 changes: 70 additions & 0 deletions sbom/cve-bin-tool-py3.9.spdx.vex.json
Original file line number Diff line number Diff line change
@@ -0,0 +1,70 @@
{
"@context": "https://openvex.dev/ns/v0.2.0",
"@id": "https://openvex.dev/docs/public/vex-d7971dad596bf8f0395a9da7c1c0a039ad75e431414c45d09dbcc3c2d4f9c989",
"author": "Unknown Author",
"timestamp": "2024-10-04T15:31:21.082828+02:00",
"last_updated": "2024-10-04T15:31:21.194452+02:00",
"version": 5,
"statements": [
{
"vulnerability": {
"name": "CVE-2024-35195"
},
"timestamp": "2024-10-04T15:31:21.082828+02:00",
"products": [
{
"@id": "pkg:pypi/[email protected]"
}
],
"status": "under_investigation"
},
{
"vulnerability": {
"name": "CVE-2024-37891"
},
"timestamp": "2024-10-04T15:31:21.112094+02:00",
"products": [
{
"@id": "pkg:pypi/[email protected]"
}
],
"status": "under_investigation"
},
{
"vulnerability": {
"name": "CVE-2024-39689"
},
"timestamp": "2024-10-04T15:31:21.13969+02:00",
"products": [
{
"@id": "pkg:pypi/[email protected]"
}
],
"status": "under_investigation"
},
{
"vulnerability": {
"name": "CVE-2024-42367"
},
"timestamp": "2024-10-04T15:31:21.166505+02:00",
"products": [
{
"@id": "pkg:pypi/[email protected]"
}
],
"status": "under_investigation"
},
{
"vulnerability": {
"name": "CVE-2024-5569"
},
"timestamp": "2024-10-04T15:31:21.194452+02:00",
"products": [
{
"@id": "pkg:pypi/[email protected]"
}
],
"status": "under_investigation"
}
]
}

0 comments on commit b2b5c41

Please sign in to comment.