From b19c93bb3db9709b7c1253d63fe51fe3bea729cd Mon Sep 17 00:00:00 2001 From: RTann Date: Mon, 9 Dec 2024 14:26:05 -0800 Subject: [PATCH] update StackRox Scanner vuln source link rendering --- modules/con-vuln-sources.adoc | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/modules/con-vuln-sources.adoc b/modules/con-vuln-sources.adoc index 5b772c4dae09..3fdec4534f27 100644 --- a/modules/con-vuln-sources.adoc +++ b/modules/con-vuln-sources.adoc @@ -24,7 +24,7 @@ StackRox Scanner uses the following vulnerability sources: ==== This product uses the NVD API but is not endorsed or certified by the NVD. ==== -* link:https://github.com/stackrox/scanner/blob/master/ext/vulnsrc/manual/manual.go and link:https://github.com/stackrox/scanner/blob/master/pkg/vulnloader/nvdloader/manual.go: The upstream StackRox project maintains a set of vulnerabilities that might not be discovered due to data formatting from other sources or absence of data. +* link:https://github.com/stackrox/scanner/blob/master/ext/vulnsrc/manual/manual.go[Linux manual entries] and link:https://github.com/stackrox/scanner/blob/master/pkg/vulnloader/nvdloader/manual.go[NVD manual entries]: The upstream StackRox project maintains a set of vulnerabilities that might not be discovered due to data formatting from other sources or absence of data. * link:https://security.access.redhat.com/data/metrics/repository-to-cpe.json[repository-to-cpe.json]: Maps RPM repositories to their related CPEs, which is required for matching vulnerabilities for RHEL-based images. [id="scanner-v4-vuln-sources"]