Weston Steimel 25762b7e3b feat: disable CPE-based matching for GHSA ecosystems by default (#1412) ... * feat: disable CPE-based matching for GHSA ecosystems by default Disables CPE-based matching for ecosystems which are covered by GitHub Security Advisories. Also adds a separate rust matcher and related configuration to allow configuring CPE-based matching off for it while still leaving it on for the stock matcher. Signed-off-by: Weston Steimel <weston.steimel@anchore.com> * chore: use --by-cve with quality gate comparison Signed-off-by: Weston Steimel <weston.steimel@anchore.com> * chore: add rust auditable binary match integration test Signed-off-by: Weston Steimel <weston.steimel@anchore.com> --------- Signed-off-by: Weston Steimel <weston.steimel@anchore.com>		2023-10-12 09:07:33 -04:00
..
codeql-analysis.yml	chore(deps): bump actions/checkout from 4.0.0 to 4.1.0 (#1519)	2023-09-26 13:16:42 -04:00
oss-project-board-add.yaml	chore: pin actions; pin images; add top level action permissions (#1493)	2023-09-15 14:29:37 -04:00
release.yaml	chore(deps): bump actions/checkout from 4.0.0 to 4.1.0 (#1519)	2023-09-26 13:16:42 -04:00
scorecards.yml	chore(deps): bump ossf/scorecard-action from 2.2.0 to 2.3.0 (#1544)	2023-10-09 13:05:06 -04:00
update-bootstrap-tools.yml	chore(deps): bump actions/checkout from 4.0.0 to 4.1.0 (#1519)	2023-09-26 13:16:42 -04:00
update-syft-release.yml	chore(deps): bump actions/checkout from 4.0.0 to 4.1.0 (#1519)	2023-09-26 13:16:42 -04:00
validations.yaml	feat: disable CPE-based matching for GHSA ecosystems by default (#1412)	2023-10-12 09:07:33 -04:00