Releases: p-rog/cve-analyser
Releases · p-rog/cve-analyser
version 2.2
version 2.1
The 2.1.1 release contains several processing improvements and bug fixes.
The most important addressed issues:
- faster data processing
- support for layered product rpm fixes
- bug fix for jenkins image
- consolidated CPEs detection
- better handling for
Not Affected
components
official version 2.0
This is an official 2.0 release.
It's based on the version_1.1 branch, but due to the long list of improvements and significant change in the tool matching logic, it was decided to release new 2.0 version.
This release contains below improvements and features:
- Output is in the csv format and it has improved formatting
- Added per-product severity
- Avoid errors if container tag is not provided (missed container tag issue)
- If the specific component is not affected, the per-product impact is not listed
- The output is limited only to the bundled packages in the container
official version 1.0
First release of the container cve-analyser tool.
Tool covers rpm content and non-rpm content in the containers (non-rpm content is covered by container name matching).