vulnerablecode icon indicating copy to clipboard operation
vulnerablecode copied to clipboard
verified publisher icon nexB

Report vulnerabilities associated with an SBOM/PURL inventory

Open johnmhoran opened this issue 1 year ago • 0 comments

We've developed a private script that takes an SBOM/PURL inventory as input, vets the PURLs with the VulnerableCode DB, and outputs a vulnerability report as a .xlsx file. We plan to use this script as the basis for integrating this capability into ScanCode.io.

johnmhoran avatar Jul 03 '24 15:07 johnmhoran