ref-manual/variables.rst: document CVE_CHECK_VEX_JUSTIFICATION

Added by commit c0fa3d92cefa ("spdx30: Allow VEX Justification to be configurable") in OE-Core. (From yocto-docs rev: cee3eb30cc736d990f2232ede0bc6d9686a63713) Signed-off-by: Antonin Godard <antonin.godard@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
author: Antonin Godard <antonin.godard@bootlin.com> 2025-07-29 11:56:47 +0200
committer: Richard Purdie <richard.purdie@linuxfoundation.org> 2025-08-08 23:41:10 +0100
commit: 5d32fd15c203a7efedd8619e87ad66ac96000091 (patch)
tree: 8ce87c10d1716196a952d932ff5879a3d3cbdd42 /documentation/ref-manual
parent: 1d54ab1f9d15776cd40a49c58a459c9f066677a3 (diff)
download: poky-5d32fd15c203a7efedd8619e87ad66ac96000091.tar.gz
1 files changed, 7 insertions, 0 deletions
diff --git a/documentation/ref-manual/variables.rst b/documentation/ref-manual/variables.rst
index d918446db2..3369bf67f7 100644
--- a/documentation/ref-manual/variables.rst
+++ b/documentation/ref-manual/variables.rst
@@ -2054,6 +2054,13 @@ system and gives an overview of their function and contents.
         CVE_CHECK_STATUSMAP[cpe-incorrect] = "Ignored"
+   :term:`CVE_CHECK_VEX_JUSTIFICATION`
+      Mapping variable for :term:`CVE_STATUS` reasons
+      (for example ``not-applicable-platform``) to :ref:`ref-classes-vex`
+      justifications. Should be set as follows::
+         CVE_CHECK_VEX_JUSTIFICATION[not-applicable-config] = "vulnerableCodeNotPresent"
   :term:`CVE_VERSION`
      In a recipe, defines the version used to match the recipe version
      against the version in the `NIST CVE database <https://nvd.nist.gov/>`__
author	Antonin Godard <antonin.godard@bootlin.com>	2025-07-29 11:56:47 +0200
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2025-08-08 23:41:10 +0100
commit	5d32fd15c203a7efedd8619e87ad66ac96000091 (patch)
tree	8ce87c10d1716196a952d932ff5879a3d3cbdd42 /documentation/ref-manual
parent	1d54ab1f9d15776cd40a49c58a459c9f066677a3 (diff)
download	poky-5d32fd15c203a7efedd8619e87ad66ac96000091.tar.gz

diff --git a/documentation/ref-manual/variables.rst b/documentation/ref-manual/variables.rst index d918446db2..3369bf67f7 100644 --- a/documentation/ref-manual/variables.rst +++ b/documentation/ref-manual/variables.rst
@@ -2054,6 +2054,13 @@ system and gives an overview of their function and contents.
2054		2054
2055	CVE_CHECK_STATUSMAP[cpe-incorrect] = "Ignored"	2055	CVE_CHECK_STATUSMAP[cpe-incorrect] = "Ignored"
2056		2056
		2057	:term:`CVE_CHECK_VEX_JUSTIFICATION`
		2058	Mapping variable for :term:`CVE_STATUS` reasons
		2059	(for example ``not-applicable-platform``) to :ref:`ref-classes-vex`
		2060	justifications. Should be set as follows::
		2061
		2062	CVE_CHECK_VEX_JUSTIFICATION[not-applicable-config] = "vulnerableCodeNotPresent"
		2063
2057	:term:`CVE_VERSION`	2064	:term:`CVE_VERSION`
2058	In a recipe, defines the version used to match the recipe version	2065	In a recipe, defines the version used to match the recipe version
2059	against the version in the `NIST CVE database <https://nvd.nist.gov/>`__	2066	against the version in the `NIST CVE database <https://nvd.nist.gov/>`__