KEV validations are missing final slog.Error.
- Grype KEV:
|
if foundKevMatch { |
|
return false |
|
} |
- CycloneDX KEV:
|
if foundKevMatch { |
|
return false |
|
} |
KEV validations should more closely match EPSS validations.
- Example EPSS validation final
slog.Error:
|
if len(badCVEs) > 0 { |
|
slog.Error("cve(s) with epss scores over limit", |
|
"over_limit_cves", len(badCVEs), |
|
"epss_limit_score", config.Grype.EPSSLimit.Score, |
|
) |
|
return false |
|
} |
KEV validations are missing final
slog.Error.gatecheck/pkg/gatecheck/validate.go
Lines 228 to 230 in 4bdc53d
gatecheck/pkg/gatecheck/validate.go
Lines 258 to 260 in 4bdc53d
KEV validations should more closely match EPSS validations.
slog.Error:gatecheck/pkg/gatecheck/validate.go
Lines 371 to 377 in 4bdc53d