intel / cve-bin-tool-action

Known vulnerability scanning for your GitHub repository using CVE Binary Tool. This Action can scan binaries, component lists and SBOMs for known vulnerabilities and CVEs. It can generate SBOM component lists as well as reports in the Security Tab and in HTML/JSON/PDF format.

intel/cve-bin-tool-action Issues

Scan a preexisting spdx file
Updated 22 days ago4
fix: sarif generation to filter out the vulnerablities using triage
Closed 6 months ago
test: test_scanner needs an update
Updated 8 months ago
fix: support other versions of cyclonedx?
Closed a year ago3
bug: action failing
Closed a year ago1
action failing
Closed a year ago1
feat: separate alerts for separate components
Closed a year ago
feat: sbom generation (by default?)
Closed a year ago5
refactor: do we need shell=true in scanner.py?
Closed a year ago3
tests: add test for build_command & build_command with error
Closed a year ago
docs: What happens if you don't supply nvd_api_key ?
Closed a year ago
refactor: improve tests to withstand future cve data changes
Closed a year ago
feat: scanning build output
Closed a year ago
ci: move linters to correct directory so they run
Closed a year ago