summaryrefslogtreecommitdiffstats
path: root/meta-python/classes/bandit.bbclass
diff options
context:
space:
mode:
authorAndre Carvalho <andrestc@fb.com>2022-01-11 16:44:44 +0530
committerArmin Kuster <akuster808@gmail.com>2022-01-11 20:47:01 -0800
commitcc9e6dabcbeb94dc1aeb87f92682fec16abcc32c (patch)
treed23383d7a954ba24506381c5a78eddec3662d7f2 /meta-python/classes/bandit.bbclass
parent4735d66eae043bb7e0a416d90b159838206bf7ce (diff)
downloadmeta-openembedded-cc9e6dabcbeb94dc1aeb87f92682fec16abcc32c.tar.gz
netcat: Set CVE_PRODUCT
This way yocto cve-check can find open CVE's. See also: http://lists.openembedded.org/pipermail/openembedded-core/2017-July/139897.html "Results from cve-check are not very good at the moment. One of the reasons for this is that component names used in CVE database differ from yocto recipe names. This series fixes several of those name mapping problems by setting the CVE_PRODUCT correctly in the recipes. To check this mapping with after a build, I'm exporting LICENSE and CVE_PRODUCT variables to buildhistory for recipes and packages." Value added is based on: https://nvd.nist.gov/products/cpe/search/results?keyword=netcat&status=FINAL&orderBy=CPEURI&namingFormat=2.3 Signed-off-by: Andre Carvalho <andrestc@fb.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Sana Kazi <sanakazisk19@gmail.com> Signed-off-by: Sana Kazi <Sana.Kazi@kpit.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
Diffstat (limited to 'meta-python/classes/bandit.bbclass')
0 files changed, 0 insertions, 0 deletions