Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Enable correlation for generic purls #860

Open
dejanb opened this issue Sep 30, 2024 · 0 comments
Open

Enable correlation for generic purls #860

dejanb opened this issue Sep 30, 2024 · 0 comments
Assignees
@dejanb
Labels
Vulnerability Correlation Correlation of vulnerabilities to Packages, SBOMs and Products

Comments

@dejanb
Copy link
Contributor

dejanb commented Sep 30, 2024

With #853 we started ingesting purls for csaf statements that don't include real purls. But these purls are not being found during the search for related SBOMs. We need to improve queries to take them into account as well.
@dejanb dejanb added the Vulnerability Correlation Correlation of vulnerabilities to Packages, SBOMs and Products label Sep 30, 2024
@dejanb dejanb self-assigned this Sep 30, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@dejanb dejanb

Labels
Vulnerability Correlation Correlation of vulnerabilities to Packages, SBOMs and Products
Projects
Trustify
Status: In progress
Milestone
No milestone
Development

No branches or pull requests
1 participant
@dejanb