This repository has been archived by the owner on Feb 15, 2024. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 1
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Merge pull request #74 from RedHatProductSecurity/minor-tweaks
Minor tweaks
- Loading branch information
Showing
7 changed files
with
146 additions
and
114 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,9 +1,9 @@ | ||
## Tutorial (UNDER DEVELOPMENT) | ||
|
||
Find products a (latest) Component is in | ||
Find Products that contain latest root Component(s) | ||
> griffon service products-contain-component webkitgtk | ||
One may use the -s flag for strict search | ||
Use -s flag for stricter search | ||
> griffon service products-contain-component -s webkitgtk | ||
And regex expressions | ||
|
@@ -16,18 +16,58 @@ Use of -v (up to -vvvv) to get more information | |
> griffon -vvv service products-contain-component "^webkitgtk(\d)" | ||
> griffon -vvvv service products-contain-component "^webkitgtk(\d)" | ||
Retrieve a product summary | ||
Find Products that contain latest root Component(s) searching both root and dependencies | ||
> griffon service products-contain-component webkitgtk --search-all | ||
Find Products that contain latest root Component searching both root and related_url | ||
> griffon service products-contain-component webkitgtk --search-related-url | ||
Retrieve a Product summary | ||
> griffon service product-summary -s rhel-7.6.z | ||
> griffon --format json service product-summary -s rhel-7.6.z | ||
Retrieve a product manifest | ||
Retrieve a Product manifest containing both latest root Component and dependencies | ||
> griffon service product-components rhel-9.0.0.z | ||
Retrieve a spdx json formatted product manifest | ||
> griffon service product-manifest ansible_automation_platform-2.3 --spdx-json | ||
Retrieve component flaws | ||
> griffon service component-flaws is-svg | ||
> griffon service component-flaws | ||
Retrieve product flaws | ||
> griffon service product-flaws ansible_automation_platform-2 --affectedness AFFECTED --affect-resolution FIX | ||
## Common questions | ||
|
||
Given a CVE ID, what products are affected? | ||
> griffon service products-affected-by-flaw CVE-2023-25166 | ||
Given a CVE ID, what components are affected? | ||
> griffon service components-affected-by-flaw CVE-2023-25166 | ||
What products + version + stream contain a given component (e.g. full | ||
text search)? | ||
> griffon service products-contain-component --purl "pkg:rpm/[email protected]" | ||
> griffon service products-contain-component is-svg --search-all | ||
Which unfixed CVE are affecting a component ? | ||
> griffon service component-flaws --affectedness AFFECTED webkitgtk | ||
Which unfixed CVE are affecting a product + version + stream ? | ||
> griffon service product-flaws ansible_platform_2 | ||
What are the fixed CVE of this a product + version + stream? | ||
> griffon service product-flaws rhel-9 --flaw-state DONE | ||
What are the fixed CVEs for a component? | ||
> griffon service component-flaws webkitgtk --flaw-state DONE | ||
What are the won’t fix CVEs for a component? | ||
> griffon service component-flaws webkitgtk --flaw-resolution WONTFIX | ||
What are the won’t fix CVEs for a product? | ||
> griffon service product-flaws rhel-9 --flaw-resolution WONTFIX | ||
How many CVE’s are filed against a product + version | ||
> griffon service product-flaws rhel-9 | wc -l |
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Oops, something went wrong.