Conversation
Flatcar is in the NIST CPE dictionary. Let's programmatically build the
`CPE_NAME` in the build process in order to be scanned.
`CPE_NAME` is part of `/etc/os-release` with the following manual entry:
```
CPE_NAME=
A CPE name for the operating system, in URI binding syntax, following the Common Platform Enumeration Specification[2] as proposed by the NIST.
This field is optional. Example: "CPE_NAME="cpe:/o:fedoraproject:fedora:17""
...
[^2]: Common Platform Enumeration Specification
http://scap.nist.gov/specifications/cpe/
```
Which indicates that the current version of CPE is 2.3.
Closes: flatcar/Flatcar#536
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
jepio
approved these changes
Nov 24, 2021
vbatts
reviewed
Nov 24, 2021
| HOME_URL="https://flatcar-linux.org/" | ||
| BUG_REPORT_URL="https://issues.flatcar-linux.org" | ||
| FLATCAR_BOARD="$FLAGS_board" | ||
| CPE_NAME="cpe:2.3:o:${OS_ID}-linux:${OS_ID}_linux:${FLATCAR_VERSION}:*:*:*:*:*:*:*" |
vbatts
approved these changes
Nov 24, 2021
jepio
approved these changes
Nov 24, 2021
Member
jepio
left a comment
There was a problem hiding this comment.
Sorry, I pressed some button and the reviews disappeared.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
4 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Flatcar is in the NIST CPE dictionary. Let's programmatically build the
CPE_NAMEin the build process in order to be scanned.CPE_NAMEis part of/etc/os-releasewith the following manual entry:Which indicates that the current version of CPE is 2.3.
Closes: flatcar/Flatcar#536
Signed-off-by: Mathieu Tortuyaux mtortuyaux@microsoft.com
CI: http://jenkins.infra.kinvolk.io:8080/job/os/job/manifest/4230/cldsv/
Output example with the image provided by this CI ⬆️ :