pkg icon indicating copy to clipboard operation
pkg copied to clipboard

Published 20 hours ago verified publisher icon freebsd

pkg-audit feature request: ability to separate security notices from deprecated and expired

Open dlangille opened this issue 3 years ago • 0 comments

I use the 410.pkg-audit periodic script to monitor various hosts. Some issues are not as urgent as others. Specifically, the expired and deprecated issues are not always under the user's control; they must want until something is done. This can take months, as it the case with db5.

Security issues, by their nature, are more urgent. If a flag was added to pkg-audit which output only security issues, that would be great. I could silence the deprecated notices for a few weeks without also silencing security alerts.

Example output here:

Checking for packages with security vulnerabilities: Host system: unbound-1.15.0_1 git-2.35.1 jail: ingress01 db5-5.3.28_8:
 Tag: expiration_date Value: 2022-06-30 db5-5.3.28_8: Tag: deprecated Value: EOLd, potential security issues, maybe use 
db18 instead jail: nginx01 jail: ingress01.freshports

dlangille avatar Aug 08 '22 18:08 dlangille