Jump to: navigation, search

FLOP:CVE Monitoring

107 bytes added, 7 months ago
no edit summary
= <tt>cver</tt>: A Tool for Monitoring CVEs =
{{note|<tt>cver</tt> now uses a MongoDB instance on the Funtoo infrastructure. No need to run your own!}}
== Summary ==
Ultimately, not all ebuilds are created equal. Hence they are updated at different rates according to their popularity in the tree of available packages and this is generally fine: packages with a lot of use get updated frequently, and vulnerabilities are generally dealt with. Unpopular ebuilds can languish, and no one really cares. However, unpopular ebuilds with a significant vulnerability should be updated, popular or not, as they represent a potential vector for attack, if they can be installed.

Navigation menu