Currently, the OVAL handlers discard a lot of CPE information. This is a hold-over from when we (I) were thinking that we could use CPE == Dist for matching. After PROJQUAY-696 has all the features we extract from the layers tagged by CPE (if present), we need to be able to capture all the CPE information from the vulnerability side.
- is related to
-
CLAIRDEV-31 Create CPE matcher
-
- Refinement
-
- relates to
-
-
- Closed
-
