You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
{{ message }}
This repository has been archived by the owner on Sep 18, 2023. It is now read-only.
Using the purl(s) included in each SBOM to derive the associated cpe(s) will allow SBOM Harbor to extract vulnerability information directly from NVD and allow the Harbor Team to develop an NVD vulnerability enrichment source.
Details
A CPE ID will only exist for dependencies that have a corresponding CPE ID in the NVD.
Definition of Done
This ticket is finished when:
A task exists to update the existing SBOM metadata in DocumentDB with the CPE ID(s) associated to the existing purl(s)
That task is running on schedule.
CPEs are queryable from the SDL, when they exist.
The text was updated successfully, but these errors were encountered:
Target Audience
SBOM Harbor users
What’s the Value
Using the purl(s) included in each SBOM to derive the associated cpe(s) will allow SBOM Harbor to extract vulnerability information directly from NVD and allow the Harbor Team to develop an NVD vulnerability enrichment source.
Details
A CPE ID will only exist for dependencies that have a corresponding CPE ID in the NVD.
Definition of Done
This ticket is finished when:
The text was updated successfully, but these errors were encountered: