Set up VEX to eliminate false-positives from vulnerability scanning tool results

Open AkihiroSuda opened this issue 3 years ago • 3 comments

e.g., https://github.com/CycloneDX/bom-examples/tree/master/VEX/Use-Cases/Case-4

For false positives like:

Dec 01 '22 01:12 AkihiroSuda

Thanks for explanation.

Regards, Sachin. K.

Dec 01 '22 05:12 its-sachink

xref: https://github.com/kubernetes/kubernetes/issues/121454

Oct 23 '23 19:10 dims

xref: https://github.com/kubernetes/sig-security/issues/116

Jun 27 '24 23:06 ritazh