Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Factor in severity from AffectedByPackageRelatedVulnerability in package risk computation #1671

Open
Tracked by #1667
keshav-space opened this issue Nov 19, 2024 · 0 comments
Open
Tracked by #1667

Factor in severity from AffectedByPackageRelatedVulnerability in package risk computation #1671

keshav-space opened this issue Nov 19, 2024 · 0 comments
Labels
risk evaluate severity, exploitability, and context factors to determine a vulnerability risk score

Comments

@keshav-space
Copy link
Member

keshav-space commented Nov 19, 2024
edited
Loading

Current design(#1543) takes into account the severity available globally at the vulnerability level. Going forward, we also need to factor in the severity available at the package-vulnerability intersection.
@keshav-space keshav-space mentioned this issue Nov 19, 2024
Open
4 tasks
@keshav-space keshav-space added the risk evaluate severity, exploitability, and context factors to determine a vulnerability risk score label Nov 19, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
risk evaluate severity, exploitability, and context factors to determine a vulnerability risk score
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@keshav-space