CVE - CI/CD用語集の定義
CVE (Common Vulnerabilities and Exposures) は、公開された1つの脆弱性に対する一意のID (例: CVE-2024-1234) を持つカタログエントリで、scanner、アドバイザリ、パッチノートに同じ欠陥への共有された参照を提供します。
関連ガイド
CVSS Score - CI/CD Glossary DefinitionA CVSS score rates a vulnerability’s severity from 0 to 10 by exploitability and impact, helping teams decide…
Image Vulnerability - CI/CD Glossary DefinitionAn image vulnerability is a known security flaw in a container image’s OS packages or libraries, surfaced by…
Dependency Confusion - CI/CD Glossary DefinitionDependency confusion tricks a build into pulling a malicious public package in place of a private one of the…