vexctl is a tool to attest VEX impact statements

Tools to download or provide CSAF (Common Security Advisory Framework) documents.

Secvisogram is a web tool for creating and editing security advisories in the CSAF 2.0 format

Secvisogram is a web tool for creating and editing security advisories in the CSAF 2.0 format

Library to ingest and generate VEX documents

A CVRF CSAF Converter, taking care about OASIS specification.

A web based CSAF Management System as Free Software (under construction)

CSAF CMS Backend is a REST-based backend to support the creation and management of CSAF 2.0 documents

CSAF generator and validator

Vulnogram is a tool for creating Security Advisories and CVE ID information.

A library and CLI to work with CSAF an SBOM data

Experimental CSAF envelope and body profile validator.

csaf-validator-lib is a library that can be used to check whether a given CSAF 2.0 document is valid.

CSAF Backend PoC

Repository for [GitHub Pages version](https://secvisogram.github.io/) of [Secvisogram](https://github.com/secvisogram/secvisogram)

Web app (module) to display a CSAF 2 document and to browse CSAF 2 ROLIE feeds. ⚠️ The web demo is often not allowed to access servers:

CSAF (Common Security Advisory Framework) Perl Toolkit

csaf-validator-service is a REST-based service that can be used to check whether a given CSAF 2.0 document is valid.