Documentation
¶
Overview ¶
Package vex is a transformer that reads in a vulnerability report and a number of VEX documents and suppresses those that do not affect the subject
Index ¶
- Constants
- type Transformer
- func (t *Transformer) ApplyVEX(subj attestation.Subject, report *osv.Results, vexes []attestation.Predicate) (attestation.Predicate, error)
- func (t *Transformer) Init(_ *structpb.Struct) error
- func (t *Transformer) Mutate(subj attestation.Subject, inputs []attestation.Predicate) (attestation.Subject, []attestation.Predicate, error)
Constants ¶
View Source
const ClassName = "vex"
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type Transformer ¶
type Transformer struct{}
Transformer implements the VEX interface
func New ¶
func New() *Transformer
func (*Transformer) ApplyVEX ¶
func (t *Transformer) ApplyVEX( subj attestation.Subject, report *osv.Results, vexes []attestation.Predicate, ) (attestation.Predicate, error)
ApplyVEX applies a group of OpenVEX predicates to the vuln report and returns the vexed report
func (*Transformer) Init ¶ added in v1.1.5
func (t *Transformer) Init(_ *structpb.Struct) error
Init satisfies the transformer interface. The VEX transformer takes no config today.
func (*Transformer) Mutate ¶
func (t *Transformer) Mutate(subj attestation.Subject, inputs []attestation.Predicate) (attestation.Subject, []attestation.Predicate, error)
Mutate applies the VEX documents in the input to the received vulnerability reports.
Source Files
Click to show internal directories.
Click to hide internal directories.