Skip to content

Releases: p-rog/cve-analyser

version 2.2

21 Sep 17:42
@p-rog p-rog
v2.2
c32632e
Compare
Choose a tag to compare
version 2.2 Latest
Latest

The 2.2 release contains a few bug fixes.

Assets 2

version 2.1

05 Sep 13:44
@p-rog p-rog
v2.1.1
5736686
Compare
Choose a tag to compare
version 2.1

The 2.1.1 release contains several processing improvements and bug fixes.

The most important addressed issues:

  • faster data processing
  • support for layered product rpm fixes
  • bug fix for jenkins image
  • consolidated CPEs detection
  • better handling for Not Affected components
Assets 2

official version 2.0

10 Jun 16:00
@p-rog p-rog
v2.0
18d2cd0
Compare
Choose a tag to compare
official version 2.0

This is an official 2.0 release.
It's based on the version_1.1 branch, but due to the long list of improvements and significant change in the tool matching logic, it was decided to release new 2.0 version.

This release contains below improvements and features:

  1. Output is in the csv format and it has improved formatting
  2. Added per-product severity
  3. Avoid errors if container tag is not provided (missed container tag issue)
  4. If the specific component is not affected, the per-product impact is not listed
  5. The output is limited only to the bundled packages in the container
Assets 2

official version 1.0

28 Mar 15:03
@p-rog p-rog
v1.0
0f3cc83
Compare
Choose a tag to compare
official version 1.0 Pre-release
Pre-release

First release of the container cve-analyser tool.
Tool covers rpm content and non-rpm content in the containers (non-rpm content is covered by container name matching).

Assets 2